Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
238
Views
0
Helpful
1
Replies

OSPF advertising process.

CATYO
Level 1
Level 1

‎03-04-2014 06:46 PM - edited ‎03-07-2019 06:32 PM

cap.JPG

Hi there.

I'm wondering ospf advertising process.

R4 is DR and R5 and R6 area DRothers. there is no BDR.

as far as i know when some link changes occur in DRother, drother sends that change to DR using 224.0.0.6.

Finally DR relized there was change and send LSU to DRother using 224.0.0.5.

So i blocked that multicast 224.0.0.6 in R4's incomming inerface.

I thought since R4 doesn't recieved 224.0.0.6 from DRother, R4 doesn't know about that link change. and also doesn't advertise to other DRother.

But Still R4 recived that update and advertise to drother.

here is my configuration.

[R4]

int fa0/0

ip add 1.1.1.1 255.255.255.0

ip ospf priority 255

access-list 101 deny ospf any host 224.0.0.6 log (trying to block multicast from DRother)

access-list 101 permit ip any any

ip access-group 101 in

[R5]

int f0/0

ip add 1.1.1.2 255.255.255.0

ip ospf priority 0

[R6]

int f0/0

ip add 1.1.1.3 255.255.255.0

ip ospf priority 0

Neighbor status.

R4#sh ip ospf nei

Neighbor ID     Pri   State           Dead Time   Address         Interface
1.1.1.2           0   FULL/DROTHER    00:00:34    1.1.1.2         FastEthernet0/0
1.1.1.3           0   FULL/DROTHER    00:00:37    1.1.1.3         FastEthernet0/0

After configuring, I added Loopback interface and adversing on R5.

R5(config-if)#int lo0

R5(config-if)#ip add 5.5.5.5 255.255.255.0

R5(config-if)#ip ospf 1 area 0

I expected that R5 generate update using 224.0.0.6, but R4 block this 224.0.0.6 multicast. So R4 doesnt' know about that change and also doesn't advertise to R6

But Still R6 know that change.

Why R4 knows about that change even though i blocked 224.0.0.6 incomming multicast ? 


access-list is working on R4

R4#sh access-lists

Extended IP access list 101
    10 deny ospf any host 224.0.0.6 log (31 matches)
    20 permit ip any any (429 matches)

Please correct me and explain and help me

Thanks in advance.

Labels:
0 Helpful
1 Reply 1

Umesh Shetty
Level 1
Level 1

‎03-04-2014 07:46 PM

Hi ,

Thats a good observation, and here's an explanation to why thats happening.

All OSPF routers send updates when there is a change in their own topology and expect an acknowledgement from their directly connected neighbors. Whenever an LSU is sent (in your case by R5 to the DR on address 224.0.0.6)  it is stored in the link state restransmission list of R5 until acknowledgement is received from all neighbors. In case an acknowledgement is not received  within the retransmit interval ( default 5 secs (can be changed with the command ip ospf retransmit-interval on a per interface level) on time from any neighbor another similar duplicate update packet is sent to the unresponsive neigbor, but this time on the neighbors unicast address not the multicast address, thats becasue only that particular neigbor did not respond and only he must receive the duplicate update packet not the others who have responded.

The second line in your ACL permits all IP packets and the retransmitted unicast packet matches the second ACL line and reaches R4 which then acknowledges the receipt and forwards the update to the other DRother router R6.

Hope this helps,and please let me know if you have further questions !

***Please rate helpful posts***

HTH

Regards

Umesh

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card