Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1721
Views
5
Helpful
1
Replies

OSPF config on NX-OS

Haldorf Sunsets
Level 1
Level 1

‎07-04-2017 01:36 PM - edited ‎03-10-2019 01:12 PM

Hi

We are deploying OSPF and OSPFv3 (for IPv6) in our WAN the next months.
OSPF routing is pretty new to us, and we are currently we are in "lab-mode".

On our datacenter, we use nexus 7009, configured with VRFs. I have some questions regarding this:

1. I cannot find any RD configuration under the vrf context in NX-OS, like we have in the vrf definition in IOS. Is this not a function in NX-OS

2. Can/should we use the same router ID for both VRFs, or do we have to have separate ones, like in the configuration below?

3. Are we on the right track with the configuration below, or is there anything clearly missing to configure OSPF / OSPFv3?

 

 

vrf context VRF1

ip route 0.0.0.0/0 10.11.2.33

vrf context VRF2

ip route 0.0.0.0/0 10.12.2.33

interface Vlan50

vrf member VRF1

ip address 10.12.2.1/30

ipv6 address 2001:628:424:6000::1/64

ipv6 nd suppress-ra

ip router ospf 1 area 0.0.0.0

ipv6 router ospfv3 1 area 0.0.0.0

description Link to ISP VRF1

no shutdown

interface Vlan51

vrf member VRF2

ip address 10.12.3.1/30

ipv6 address 2001:628:424:7000::1/64

ipv6 nd suppress-ra

ip router ospf 1 area 0.0.0.0

ipv6 router ospfv3 1 area 0.0.0.0

description Link to ISP VRF2

no shutdown

 

router ospf 1

vrf VRF1

   router-id 10.0.0.1

vrf VRF2

   router-id 10.0.0.2

router ospfv3 1

vrf VRF1

   router-id 10.0.0.1

vrf VRF2

   router-id 10.0.0.2

 

Labels:
0 Helpful
1 Reply 1

Francesco Molino
VIP Alumni
VIP Alumni

‎07-04-2017 08:46 PM

Hi 

Your ospf is very simple and fine. If you have multiple svi into ospf, don't forget to set all interfaces as passive and non passive only those you'll use to build ospf adjacencies.

Also you can protect your ospf peering by using a password. 

In your config, both svi are part of area backbone and that's fine. But IDF you have multiple routers into your ospf, you can design it to have multiple areas. This will allow you to manipulate routes within areas. Again, this depends on how big will be your final ospf architecture. 

In terms of router-id, as there're 2 different processes (ipv4 and ipv6) you can use the same router-id as you put in your config. 

On Nexus you can configure rd under vrf context but only if feature mpls and mpls l3vpn are enabled. In your case you're using vrf lite and there's no need to use rd. Route distinguisher are used in bgp (MPBGP) when using address-family vpnv4 or vpnv6. 

Hope that answers your questions. 

Thanks 

PS: Please don't forget to rate and mark as correct answer if this answered your question


Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card