Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4225
Views
0
Helpful
18
Replies

Multiple OSPF Processes per VRF

Steven Williams
Level 4
Level 4

‎06-29-2016 07:02 AM - edited ‎03-08-2019 06:25 AM

Can you have multiple OSPF processes in a single VRF?

Labels:
0 Helpful
18 Replies 18

Richard Burts
Hall of Fame
Hall of Fame
In response to Steven Williams

‎06-29-2016 07:14 PM

In your early post you talked about OSPF 10 between ASA and 4500. Now you are talking about OSPF 10 on remote sites. And you now introduce OSPF 100 and 200. Please make up your mind which OSPF is running where. And when you have decided please let us know.

Also please explain what you intend the relationship to be of OSPF 100 and 200. When you say that they will see each other over broadcast that implies that they are both running on the same interface. But if two OSPF processes attempt to run on the same interface then only one of them will actually have the interface active in that process. So I do not see how 100 and 200 will see each other in VRF RED.

HTH

Rick

HTH

Rick
0 Helpful

Steven Williams
Level 4
Level 4
In response to Richard Burts

‎06-29-2016 07:34 PM

I was just stating examples. I will draw a diagram. This will help. 

0 Helpful

Steven Williams
Level 4
Level 4
In response to Richard Burts

‎06-30-2016 06:52 AM

So in the ASA routing table you will see all routes from every vrf downstream due to the one process on the ASA and the ability to see everything downstream in each vrf. this asa process also says always advertise default route.

now on the 4500, originally without the route map to accept the default route only from the ASA, every vrf was able to see routes in another vrf. we cannot have that, so a route map was created to accept only the default route from the ASA for every vrf on the 4500.

So on the 4500 in each vrf route table you will see the networks that belong to that vrf local on the 4500 and the default route coming from the ASA.

Now a single port running metro E to remote site in layer 3 mode is defined in vrf GREEN and sits in OSPF process 300. the 4500 cannot see the networks from the remote site due the route map filtering to allow default route inbound. But if I remote that it allows all routes inbound. 

Preview file
100 KB
0 Helpful

Richard Burts
Hall of Fame
Hall of Fame
In response to Steven Williams

‎06-30-2016 07:43 AM

The drawing was helpful. And this is for a single VRF and not for multiple VRFs? My suggestion is that in VRF GREEN you configure a second OSPF process (perhaps ospf 310) and in the second OSPF process put a network statement for 192.168.100.0. This will allow OSPF from the 4500 to build a neighbor relationship with the remote site. At this point the 4500 will learn the remote subnets but will not have anything to advertise.

Then you need to configure redistribution from ospf 310 to 300. This will allow the 4500 to advertise the remote subnets to the ASA. Then you need to configure redistribution from ospf 300 to 310 with a route map that restricts it to the default route.

HTH

Rick

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents