cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
313
Views
1
Helpful
4
Replies

Cisco SD WAN OSPF - LAN SWITCH NOT INSTALLING LEARNED ROUTES

Hi all, 

I'm running a 20.9 sd wan home lab with Cloud vEdges, I have a dual site (one of 4) with OSPF running on the LAN side where I have a L3 switch doing as a core.

I have 3 VPNs (100, 300, 400) which are mapped to respective ospf process with vrf in the core (100 vrf 100, 300 vrf 300 and 400 vrf 400). 

The issue I'm running into is that Core switch has all the routes redistributed from OMP in its database for each VPN/VRF, but it's ignoring all those routes due the DN-bit set by the vedges which it's used for loop prevention:

*Apr 30 03:04:57.322: OSPF-100 EXTER: Start processing AS External LSA 5/10.1.99.12/10.10.20.22, mask 255.255.255.252
*Apr 30 03:04:57.322: OSPF-100 EXTER: age 12, seq 0x80000005, metric 16777214, metric-type 2, fw-addr 0.0.0.0
*Apr 30 03:04:57.322: OSPF-100 EXTER: Downward bit set, ignoring the LSA

When I move one peering, let's say VPN100 on vEdge to peer with ospf in the GRT, everything works fine, the issue only happens when using ospf with vrf instances.

ArielGustavoHerediaOliva72399_0-1714448271556.png

What should I do to get this working with per OSPF and VRF on the core switch? 

 

Any idea would be helpful, thanks!

 

2 Accepted Solutions

Accepted Solutions

Harold Ritter
Cisco Employee
Cisco Employee

Hi @ArielGustavoHerediaOliva72399 ,

You need to configure "capability vrf-lite" under the ospf process on the core switch.

Regards,

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México

View solution in original post

Hi,

OSPF process with VRF assumes itself connected to OSPF MPLS Superbackbone i.e PE router where DN-bit based LSAs are ignored. You need "capabilty-vrf" to disable that logic.

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

View solution in original post

4 Replies 4

Harold Ritter
Cisco Employee
Cisco Employee

Hi @ArielGustavoHerediaOliva72399 ,

You need to configure "capability vrf-lite" under the ospf process on the core switch.

Regards,

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México

Hi,

OSPF process with VRF assumes itself connected to OSPF MPLS Superbackbone i.e PE router where DN-bit based LSAs are ignored. You need "capabilty-vrf" to disable that logic.

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

Hi @Harold Ritter and @Kanan Huseynli

Everything is working smoothly now.

Thank you for your help!

You are very welcome @ArielGustavoHerediaOliva72399 and thanks for the feedback

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México