I have the following scenario, two nexus 9K are configured as vPC peers with HSRP, the upstream is connected to active/standby firewall with OSPF configured.
below is the configuration;
SW1 & SW2
router ospf 1
area 0.0.0.4 nssa no-summary
ip ospf dead-interval 3
ip ospf hello-interval 1
ip ospf network point-to-point
ip router ospf 1 area 0.0.0.4
ip ospf bfd
vpc domain 10
role priority 100
peer-keepalive destination 10.10.10.2 source 10.10.10.1 vrf vpcvrf
ip arp synchronize
Switch one neighbor is flapping between EXSTART and EXCHANG
Neighbor ID Pri State Up Time Address Interface
10.10.10.5 1 FULL/ - 00:25:17 188.8.131.52 Vlan20
10.20.10.10 1 EXCHANGE/ - 0.065025 184.108.40.206 Vlan20
Please advice if the above configuration is correct.
Solved! Go to Solution.
Are you running 9Ks?
well then it seems L3 over vPC is now applicable however I would suggest if you can to have a separate L3 for you backup path between switches instead of using the and svi over peer-link
You are right, your setup is valid and supported assuming you have the required minimum software version on the N9K.
However within your vlan20 you have 3 OSPF neighbors so this is obviously no P2P network. As such the "ip ospf network point-to-point" configuration needs to be removed.
And you don't need hsrp there, it is just cluttering your configuration.