Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
239
Views
1
Helpful
4
Replies

Cisco SD WAN OSPF - LAN SWITCH NOT INSTALLING LEARNED ROUTES

Go to solution
ArielGustavoHerediaOliva72399
Level 1
Level 1

‎04-29-2024 08:47 PM

Hi all, 

I'm running a 20.9 sd wan home lab with Cloud vEdges, I have a dual site (one of 4) with OSPF running on the LAN side where I have a L3 switch doing as a core.

I have 3 VPNs (100, 300, 400) which are mapped to respective ospf process with vrf in the core (100 vrf 100, 300 vrf 300 and 400 vrf 400). 

The issue I'm running into is that Core switch has all the routes redistributed from OMP in its database for each VPN/VRF, but it's ignoring all those routes due the DN-bit set by the vedges which it's used for loop prevention:

*Apr 30 03:04:57.322: OSPF-100 EXTER: Start processing AS External LSA 5/10.1.99.12/10.10.20.22, mask 255.255.255.252
*Apr 30 03:04:57.322: OSPF-100 EXTER: age 12, seq 0x80000005, metric 16777214, metric-type 2, fw-addr 0.0.0.0
*Apr 30 03:04:57.322: OSPF-100 EXTER: Downward bit set, ignoring the LSA

When I move one peering, let's say VPN100 on vEdge to peer with ospf in the GRT, everything works fine, the issue only happens when using ospf with vrf instances.

ArielGustavoHerediaOliva72399_0-1714448271556.png

What should I do to get this working with per OSPF and VRF on the core switch? 

 

Any idea would be helpful, thanks!

 

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Harold Ritter
Cisco Employee
Cisco Employee

‎04-29-2024 08:58 PM

Hi @ArielGustavoHerediaOliva72399 ,

You need to configure "capability vrf-lite" under the ospf process on the core switch.

Regards,

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México

View solution in original post

Go to solution
Kanan Huseynli
VIP
VIP

‎04-29-2024 11:16 PM

Hi,

OSPF process with VRF assumes itself connected to OSPF MPLS Superbackbone i.e PE router where DN-bit based LSAs are ignored. You need "capabilty-vrf" to disable that logic.

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Harold Ritter
Cisco Employee
Cisco Employee

‎04-29-2024 08:58 PM

Hi @ArielGustavoHerediaOliva72399 ,

You need to configure "capability vrf-lite" under the ospf process on the core switch.

Regards,

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México

Go to solution
Kanan Huseynli
VIP
VIP

‎04-29-2024 11:16 PM

Hi,

OSPF process with VRF assumes itself connected to OSPF MPLS Superbackbone i.e PE router where DN-bit based LSAs are ignored. You need "capabilty-vrf" to disable that logic.

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

0 Helpful

Go to solution
ArielGustavoHerediaOliva72399
Level 1
Level 1

‎04-30-2024 07:59 PM

Hi @Harold Ritter and @Kanan Huseynli

Everything is working smoothly now.

Thank you for your help!

0 Helpful

Go to solution
Harold Ritter
Cisco Employee
Cisco Employee
In response to ArielGustavoHerediaOliva72399

‎04-30-2024 08:14 PM

You are very welcome @ArielGustavoHerediaOliva72399 and thanks for the feedback

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México
0 Helpful
Customers Also Viewed These Support Documents