Professional Documents
Culture Documents
Carrier-Class Router
Configuration Guide (IPv4 Routing)
Version: V1.00.30
ZTE CORPORATION
NO. 55, Hi-tech Road South, ShenZhen, P.R.China
Postcode: 518057
Tel: +86-755-26771900
Fax: +86-755-26770801
URL: http://ensupport.zte.com.cn
E-mail: support@zte.com.cn
LEGAL INFORMATION
Copyright © 2011 ZTE CORPORATION.
The contents of this document are protected by copyright laws and international treaties. Any reproduction or
distribution of this document or any portion of this document, in any form by any means, without the prior written
consent of ZTE CORPORATION is prohibited. Additionally, the contents of this document are protected by
contractual confidentiality obligations.
All company, brand and product names are trade or service marks, or registered trade or service marks, of ZTE
CORPORATION or of their respective owners.
This document is provided “as is”, and all express, implied, or statutory warranties, representations or conditions
are disclaimed, including without limitation any implied warranty of merchantability, fitness for a particular purpose,
title or non-infringement. ZTE CORPORATION and its licensors shall not be liable for damages resulting from the
use of or reliance on the information contained herein.
ZTE CORPORATION or its licensors may have current or pending intellectual property rights or applications
covering the subject matter of this document. Except as expressly provided in any written license between ZTE
CORPORATION and its licensee, the user of this document shall not acquire any license to the subject matter
herein.
ZTE CORPORATION reserves the right to upgrade or make technical change to this product without further notice.
Users may visit ZTE technical support website http://ensupport.zte.com.cn to inquire related information.
The ultimate right to interpret this product resides in ZTE CORPORATION.
Revision History
R2.1 2011-05-10 Third release, part of the description details are modified
I
3.4.2 Command Maintenance Commands for Debugging .................................. 3-12
3.5 RIP Configuration Example ............................................................................... 3-13
3.6 RIP Fault Handling ........................................................................................... 3-16
3.6.1 Network Topology................................................................................... 3-16
3.6.2 Fault Analysis ........................................................................................ 3-16
3.6.3 Handling Flow ........................................................................................ 3-16
3.6.4 Handling Procedure................................................................................ 3-17
II
4.2.14 Configuring OSPF FRR ........................................................................ 4-37
4.3 OSPF Maintenance .......................................................................................... 4-37
4.3.1 Common Maintenance Commands for Viewing Information....................... 4-37
4.3.2 Common Maintenance Commands for Debugging.................................... 4-44
4.4 OSPF Configuration Examples.......................................................................... 4-46
4.4.1 OSPF Configuration Example One .......................................................... 4-46
4.4.2 OSPF Configuration Example Two .......................................................... 4-48
4.4.3 OSPF Multi-Instance Configuration Example............................................ 4-50
4.4.4 OSPF Route Load Sharing Configuration Example................................... 4-53
4.5 OSPF Fault Handling........................................................................................ 4-54
4.5.1 OSPF Basic Function Fault Handling ....................................................... 4-54
4.5.2 OSPF Multi-Instance Fault Handling ........................................................ 4-57
4.5.3 OSPF Route Load Sharing Fault Handling ............................................... 4-59
III
5.5.1 Single Area IS-IS Configuration Example ................................................. 5-23
5.5.2 Multi-Area IS-IS Configuration Example ................................................... 5-26
5.5.3 IS-IS Multi-Instance Configuration Example ............................................. 5-33
5.5.4 IS-IS FRR Configuration Example ........................................................... 5-35
5.6 IS-IS Fault Handling ......................................................................................... 5-37
5.6.1 IS-IS Basic Function Fault Handling......................................................... 5-37
5.6.2 IS-IS Multi-Instance Fault Handling.......................................................... 5-40
5.6.3 IS-IS FRR Fault Handling........................................................................ 5-43
Figures............................................................................................................. I
Tables .............................................................................................................V
Glossary .......................................................................................................VII
IV
About This Manual
Purpose
At first, thank you for choosing ZXR10 routers of ZTE Corporation!
This manual describes the principle, configuration commands, maintenance commands,
configuration examples and fault handling about IPv4 routing function of ZXR10 M6000.
Intended Audience
This manual is intended for the following engineers:
l Network planning engineer
l Commissioning engineer
l On-duty personnel
Chapter Summary
Chapter 1 Safety Instruction Introduces safety instruction and symbol description for device
installation, operation and maintenance.
Chapter 2 Static Route Describes the Static Route principle, configuration commands,
Configuration maintenance commands, configuration examples and fault
handling.
Conventions
ZTE documents employ the following typographical conventions.
I
Typeface Meaning
Italics Variables in commands. It may also refers to other related manuals and documents.
Bold Menus, menu options, function names, input fields, option button names, check boxes,
drop-down lists, dialog box names, window names, parameters and commands.
CAPS Keys on the keyboard and buttons on screens and company name.
Constant Text that you type, program codes, filenames, directory names, function names.
width
[] Optional parameters.
{} Mandatory parameters.
Danger: Indicates an imminently hazardous situation, which if not avoided, will result in
death or serious injury.
Warning: Indicates a hazard that, if not avoided, could result in serious injuries,
equipment damages or interruptions of major services.
Caution: Indicates a potential hazard that, if not avoided, could result in moderate
injuries, equipment damages or partial service interruption.
Tip: Indicates a suggestion or hint to make things easier or more productive for the
reader.
II
Chapter 1
Safety Instruction
Table of Contents
Safety Instruction .......................................................................................................1-1
Safety Signs ...............................................................................................................1-1
Warning!
Indicates the matters needing close attention. If this is ignored, serious injury accidents
may happen or devices may be damaged.
Caution!
Indicates the matters needing attention during configuration.
1-1
Note:
Indicates the description, hint, tip, and so on for configuration operations.
1-2
2-1
Command Function
ZXR10(config)#ip route [ vrf < vrf-name> ] < prefix> < net-mask> { < This configure a next hop of an IPv4
nexthop-address > [ global] } [ < distance-metric> ] [ metric < metric> ] [ static route. The < nexthop-address >
bfd enable ] parameter can be a direct-connected
address or an indirect-connected
address.
Parameter descriptions:
Parameter Description
vrf < vrf-name> It is used to configure static route of the designated Virtual Route
Forwarding Table (VRF). The VRF name is with 1–32 characters. The
mng port is used as a special VRF.
< prefix> Network Internet Protocol (IP) prefix, in dotted decimal notation
< nexthop-address > IP address of the next hop, in dotted decimal notation
global Indicating that public network next hop can be configured for a private
network. This is allowed only when it is to configure a next hop of
a private network route.
2-2
Command Function
ZXR10(config)#ip route [ vrf < vrf-name> ] < prefix> < net-mask> { < This configure an out-interface of
interface-name> | < interface-name> < nexthop-address > } [ < distance-metric> an IPv4 static route. When the
] [ metric < metric> ] [ bfd enable ] out-interface is an Ethernet interface, it
is necessary to configure the next hop
address at the same time.
Parameter descriptions:
Parameter Description
For a point-to-point interface, it is only necessary to specify the out-interface for the static
route, because specifying an out-interface also specifies the next hop implicitly. It is
considered that the address on the peer interface connected to the local interface directly
is the next hop address of the route.
For an Ethernet interface, it is not allowed to specify an Ethernet interface as an
out-interface. In applications, when it is necessary to specify an Ethernet interface as an
out-interface, it is necessary to specify the out-interface first and then specify the next
hop address.
A static route with an out-interface as a null interface can be applied as a black route.
Traffic matches this route will be dropped directly.
Example
As show in Figure 2-1, configure a static route to 30.2.0.0/16 on R1, and the next hop is
20.20.20.2 (an interface on R3). The next hop is not a direct-connected network of R1. To
make the static route effective, there should be a route to 20.20.20.0/24 with the next hop
2-3
10.10.10.2 (direct-connected next hop of R1) in the routing table. This is once next hop
iterative resolution.
Static route configuration on R1:
R1(config)#ip route 30.2.0.0 255.255.0.0 20.20.20.2
R3(config)#router isis
R3(config-isis)#area 01
R3(config-isis)#is-type level-2
R3(config-isis)#system-id 00D0.D0C7.5541
R3(config-isis)#interface fei-0/1/0/2
R3(config-isis-if)#ip router isis
In this example, IS-IS is used to generate a route to 20.20.20.0/24 with the next hop
10.10.10.2 (direct-connected next hop of R1) in the routing table of R1. After once next
2-4
hop iterative resolution, the next hop address to the destination 30.2.0.0/16 in the routing
table is 10.10.10.2 (direct-connected next hop of R1).
Command Function
ZXR10#show ip protocol routing [ vrf < vrf_name> ] This shows routing table of the router.
Vrf_name is the name of vrf.
ZXR10#show ipforwarding route [ vrf < vrf_name> ] This shows forwarding table of the
router. Vrf_name is the name of vrf.
Use the show ip protocol routing command to show global routing table of the router.
Inspect whether the configured static route exists in routing table. This command is often
used for routing protocol diagnose and maintenance.
Use the show ip forwarding route command to show forwarding table of router for
inspecting whether there is static route in forwarding table.
An example of the show ip protocol routing command output is shown below.
ZXR10(config)#show ip protocol routing
Protocol routes:
status codes: *valid, >best, i-internal, s-stale
2-5
Gw Gateway
2-6
Method 2 is similar to method 1. The only difference is that the method 1 uses IP
address as the next hop but method 2 uses local egress interface as the next hop.
That is to say, all the packets transmitted to destination network segment 140.1.1.0/24
and 10.9.1.0/24 are sent by the interface pos192-0/1/0/1 on R1 but not routed to logical
address of the next hop. Method 2 is not suitable for Ethernet interface, and it is only
suitable for POS interface.
l This configures the local egress interface and the direct next hop.
R1(config)#ip route 140.1.1.0 255.255.255.0 fei-0/1/0/2 10.6.1.18
R1(config)#ip route 10.9.1.0 255.255.255.0 fei-0/1/0/2 10.6.1.18
Method 3 is different from method 2. If egress interface and the next hop are
configured to specify egress interface, this mode is suitable for Ethernet interface.
If the next hop is configured and the next hop is direct, the configuration effect
is same to that of egress interface and next hop. But if the indirect next hop is
configured, the next hop will make recursion resolution. The two designs are to meet
the requirements of direct and indirect.
Configuration on R2:
2-7
If there are multiple paths to the same destination, a router can be configured with multiple
static routes with different administrative distances. However, routing table only displays
information about route with minimum distance because when router is informed of multiple
competition sources to a network, route with minimum administrative distance takes the
precedence.
The < distance-metric> parameter in static route configuration command about IP route can
be used to change administrative distance value of a static route. Supposing there are two
different routes from R1 to network section 140.1.1.0/24, the configuration is as follows:
Above commands are used to configure two different static routes arriving to the same
network segment. The first command does not configure administrative distance, so
default value “1” is used. The second command configures administrative distance of 20.
Since administrative distance of the first route is less than that of the second route, only
information about first route appears in routing table. That is, the router sends packets to
destination network segment 140.1.1.0/24 through next-hop address 10.6.1.18 only. The
second route appears in routing table only when the first route fails and disappears from
the routing table. The two static routes cannot have the same tag value, which go to the
same destination network but their next-hop is different.
Use the show command to view the routes on R1, as shown below.
R1(config)#show ip protocol routing network 140.1.1.0
Protocol routes:
status codes: *valid, >best, i-internal, s-stale
2-8
Use the show command to view the routes on R1, as shown below.
R1(config)#show ip protocol routing
Protocol routes:
status codes: *valid, >best, i-internal, s-stale
There are lots of routes in routing table, people can use summary static route to optimize
the routing table of R1. The following command can be used to replace the two commands
above.
R1(config)# ip route 10.0.0.0 255.0.0.0.0 10.6.1.18
By using this command, all the packets transmitted to destination network segment
10.0.0.0/16 pass through 10.6.1.18. That is to say, all the packets which destination
address is 10.0.0.0/8 (sub networks 10.3.1.0/24 and 10.9.1.0/24) are sent to 10.6.1.18. In
this way, multiple static routes with the same destination can be summarized to a static
route, which can optimize routing table.
When a router cannot route a packet, the packet has to be dropped. However, this is not
hoped that packet is dropped in an "unknown" destination. To support complete connection
of router, this must have a route connected to a network. If router wants to keep complete
connection and meanwhile does not need to record each independent route, default route
can be used. By use of default route, an independent route can be designated to indicate
all other routes.
2-9
As shown in Figure 2-4, since there is no route pointing to Internet on R1, R1 needs to use
default route that send packets to R2 for processing.
Default route configuration is completely the same as static route configuration and only
difference is that the network part and subnet mask part are all 0.0.0.0.
Configuration on R1:
R1(config)# ip route 0.0.0.0 0.0.0.0 10.6.1.18
Here, if the next hop is configured as null interface, the route is black hole route.
Configuration on R1:
R1(config)# ip route 0.0.0.0 0.0.0.0 null1
Default route is not always a static route. It also can be routes of other protocols, such
as Border Gateway Protocol (BGP), Routing Information Protocol (RIP) and so on. When
default route is used in routing protocol configuration, default route varies with routing
protocols.
If default route is configured on a router where RIP runs, the RIP will advertise the default
route to its neighbor, and even route redistribution is not needed in RIP domain.
2-10
For BGP protocol, a router where the BGP runs will not inject the default route into its
neighbor automatically. For BGP to send the default route to BGP domain, the command
default-information-originate has to be used first, and then redistribute default route.
Use the show on R1 to view protocol table and the result shows that the route is not
generated on R1. People fails to ping the destination address 10.9.1.39 on R1.
If the static route pointing to destination address is already configured on R1, but the
static route is not generated successfully and the destination address cannot be pinged
successfully, that because the physical link is failed.
2-11
1. Use the show ip protocol routing command to inspect whether the configured static
route is generated on router. Inspect the IP address and the state of physical link if the
static route is failed to generate. Check if the configured static route is correct such
as if the destination network segment, subnet mask and next hop configuration are
correct.
2. If configuration is correct, inspect IP address configuration and the networking physical
connection state.
3. Use the show ip interface brief command or the show ip interface command on the
interfaces to inspect whether the connected physical interfaces are in up state.
4. If interface is down, check if physical connection of network is correct.
2-12
5. Use the ping command to inspect whether the destination network segment can be
pinged successfully.
If the fault cannot be solved according to the steps above, please ask for technical support.
2-13
2-14
RFC stipulates that the maximum hop count must be less than 16, so RIP is only
applicable to small-sized network. Hop count of 16 indicates infinite distance, representing
unreachable route, which is one way for RIP to identify and prevent the routing loop.
Only hop count is taken as the metric for RIP routing; bandwidth, delay and other variable
factors are not considered. RIP always takes paths with the least hop count as the
optimized path, which results that the selected path is not the best one.
Default Administrative Distance (AD) value of RIP is 120. As for AD, the lower the value,
the higher the reliability of routing source. Compared to other routing protocols, RIP is not
quite reliable.
3-1
Flush timer: When it is not updated in the succeeding period of time (240s by default), the
router clears the route completely from the routing table.
RIP protocol uses poison reverse to speed up protocol convergence. The poison reverse
sets the metrics of the unreachable network prefixes to be 16 (meaning unreachable).
After receiving route update packet of the metric, the router will discard the route instead
of waiting for the aging time.
RIP uses split horizon to prevent loop and reduce the size of route update packet. Split
horizon means that if an interface receives a route update packet, it will not transmit this
update packet from itself to others.
3-2
When the router which sends request receives the response message, it will process the
route update message information containing in response message.
l For an new route entry, the router adds the new route and IP address of the advertised
router to its routing table.
l For an existent RIP route, the router replaces the original route entry only when the
new route has less hop count.
2 ZXR10(config-rip)#network < ip-address> < wildcard-mask> This runs RIP on a specified network
segment.
2 ZXR10(config-rip)#timers basic < update> < invalid> < holddown> This adjusts RIP network timer.
< flush>
3 ZXR10(config-rip)#output-delay < packets> < delay> This sets the delay time for sending
RIP update packets.
Parameter Description
< update> The interval for sending update, the unit is second, the range is
1-65535, and the default value is 30 seconds.
3-3
Parameter Description
< invalid> Period before route invalidity in seconds, 1-65535. This value shall be
at least 3 times of update, 180 seconds by default.
When there is no route refreshing, the route is ineffective. Here,
the route is blocked, marked as inaccessible, and advertised as
unreachable, but the route can still be used to forward message
packets.
< holddown> Period for suppressing optimized route in seconds, 0-65535. This
value shall be at least 3 times of update, 180 seconds by default.
When the router receives the update message and obtains a
unreachable route, it will enter the blocked state, be marked as
inaccessible, and be advertised as unreachable, but the route can
still be used to forward packets. After passing the blocked period, it
receives the routes advertised by other routers, and the route will
be accessible again.
< flush> Period from route invalidity to route clearing in seconds, 1-65535,
240 seconds by default.
The designated time must be greater than the holddown value.
Otherwise, it cannot pass the proper block time. In this way, the new
routes will be received before the block expires.
Parameter Description
< packets> The number of packets, ranging from 1 to 4294967295, and the
default value is 5.
< delay> The time interval for sending the packets in a designated number.
The unit is second, the range is 0-100, and the default value is 100ms.
Example
This configures optional RIP parameters related to time.
ZXR10(config)#router rip
ZXR10(config-rip)#timers basic 5 15 15 30
ZXR10(config-rip)#output-delay 500 10
3-4
RIPv2 supports plain text and Message Digest 5 Algorithm (MD5) authentication
modes. Password is configured on interfaces. Network neighbors have to use the
same authentication mode and password. RIPv1 does not support authentication.
To configure RIP packet plain text authentication mode, perform the following steps.
3 ZXR10(config-if)#ip rip authentication key < key> This sets the key for interface plain
text authentication. The length of
key is 1-16 characters.
To configure RIP packet MD5 authentication mode, perform the following steps.
3-5
3 ZXR10(config-if)#ip rip authentication key-chain < key-id> < This sets to provide key-chain in
key-string> interface MD5 authentication.
Parameter Description
It is suggested that users do not change the default state of split horizon unless to
ensure to advertise route correctly. If the split horizon is disabled on serial port (and
the port connects to packet switching network), then those of all the related routers
and access servers have to be disabled.
4. Configuring route redistribution
To redistribute routes from a routing domain to RIP routing domain, perform the
following steps.
2 ZXR10(config-rip)#redistribute < protocol> [ process-id] [ metric < This redistributes routes of other
metric-value> ] [ route-map < name> ] routing protocols to RIP.
3-6
Parameter Description
< protocol> Source routing protocol of route redistribution, which can be the
following keyword: ospf-ext, ospf-int, static, bgp-ext, bgp-int,
connected, isis-1, isis-2, and isis-1-2
< protocol> The source protocol redistributed. It can be ospf-ext, ospf-int, static,
bgp-ext, bgp-int, connected, isis-1, isis-2 or isis-1-2.
metric < metric-value> Specifies the route metric to introduce the route. If it is not specified,
the default-metric is used. Its range is 0-16.
route-map < map-tag> The name of the route map for redistribution, 1-31 characters.
To specify RIP version for router receiving or sending packets on ZXR10 M6000, use the
following steps.
To specify the RIP version of packets to be sent or received by an interface, perform the
following steps.
RIP default state specified by using the version command can be ignored.
3 ZXR10(config-if)#ip rip send version { 1 | 2 { broadcast | multicast} } This specifies RIP version (RIPv1 or
RIPv2) of the packets to be sent by
an interface.
3-7
Parameter Description
2 The interface only sends RIPv2 packets. Here, broadcast or multicast mode can be selected.
broadcast The interface send compatible packets to broadcast address. All of routes are natural networks,
and no supernetting route.
multicast The interface sends RIPv2 packets to multicast address. By using the auto-summary command,
sub network route can be sent.
3-8
Command Function
ZXR10(config)#show ip rip [ vrf < vrf-name> ] This shows the basic information of RIP
running.
ZXR10(config)#show ip rip interface [ vrf < vrf-name> ] < interface-name> This shows the current configuration
and state of a RIP interface.
ZXR10(config)#show ip rip database [ vrf < vrf-name> ] [ network < This shows the route entries generated
ip-address> [ mask < net-mask> ] ] by RIP.
ZXR10(config)#show ip rip networks [ vrf < vrf-name> ] This shows information of all RIP
interfaces.
Parameter descriptions:
Parameter Description
3-9
auto-summary This shows that only the summarized routes of natural network and
suppernetting can be sent (for RIPv2).
Use no to sent all RIP routes.
Be noted that the following policy is still available even if auto-summary
is used. When a router has the RIP sub network route of the natural
network to which the IP address of a RIP interface belongs, the RIP
update packet sent by the RIP interface to outside does not contain
the route of natural network to which its IP address belongs, but it
contains the routes of other RIP sub networks which do not belong to
the same natural network segment with RIP the interface.
default-metric This sets the default metric value for redistributing the routes
generated by other protocol to RIP routes.
Use no to restore the default value of 1.
This command can be used with redistribute command together
to make route selection protocol use the same metric value for all
redistributed routes.
Default metric helps to solve the route redistribution problem caused
by routes using different metric values. It can provide a reasonable
alternative method to ensure that the redistribution can be performed
successfully.
validate-update-source This enables the function that check the validity of source IP address
of the received RIP updating packet.
Use no to disable this function.
3-10
InstanceID Instance number, only valid for Open Shortest Path First (OSPF)
instance and IS-IS instance
Time It shows the existing time and timer state of the route.
send subnet only This shows that after this command is used, the interface only sends
the information of the route which belongs to the same sub network
with itself, and it blocks the information of the route which belongs to
other sub network.
It applies to such a case that the lower router sends route information
to upper router. Only the information of local sub network needs to be
advertised. In this way, the route traffic can be reduced a lot.
notify default The route entry sent by interface contains default route.
For parameter only, that means the route entry sent by interface only
contains default route.
3-11
Command Function
3-12
Command Function
3-13
Configuration Thought
1. Configure interface IP addresses.
2. Configure RIP.
3. Enable RIP configurations on interfaces.
4. Test configuration result to make sure that neighborhood is established between R1
and R2. R1 and R2 can learn the routes advertised by the peer between each other.
Configuration Commands
Configuration on R1:
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 192.168.1.1 255.255.255.0
R1(config-if)#exit
R1(config)#interface fei-0/1/0/2
R1(config-if)#ip address 10.1.0.1 255.255.0.0
R1(config-if)#exit
R1(config)#router rip
R1(config-rip)#network 192.168.1.1 0.0.0.255
R1(config-rip)#network 10.1.0.1 0.0.255.255
Configuration on R2:
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 192.168.1.2 255.255.255.0
R2(config-if)#exit
R2(config)#interface fei-0/1/0/2
R2(config-if)#ip address 10.2.0.1 255.255.0.0
R2(config-if)#exit
R2(config)#router rip
R2(config-rip)#network 192.168.1.2 0.0.0.255
R2(config-rip)#network 10.2.0.1 0.0.255.255
Configuration Verification
After the configuration is finished, the following information needs to be displayed, that
indicates the neighborhood is established between R1 and R2, and they can learn routes
between each other.
3-14
Use the show running-config rip command on R1 to inspect whether RIP configuration is
correct.
R1(config-rip)#show running-config rip
router rip
network 192.168.1.0 0.0.0.255
network 10.1.0.0 0.0.255.255
interface fei-0/1/0/1
$
interface fei-0/1/0/2
$
!
R1(config-rip)#
R1(config)#show ip rip database
Routes of rip:
h : is possibly down,in holddown time
f : out holddown time before flush
Use the show running-config rip command on R2 to inspect whether RIP configuration is
correct.
R2(config-rip)#show running-config rip
router rip
network 192.168.1.0 0.0.0.255
network 10.2.0.0 0.0.255.255
interface fei-0/1/0/3
$
interface fei-0/1/0/1
$
!
R2(config)#show ip rip database
Routes of rip:
h : is possibly down,in holddown time
f : out holddown time before flush
3-15
In general, the first thing is that inspect the fault is caused by hardware or software.
For hardware, inspect master control board, line card, interface card and network cable
(inspect whether the direct-connected interfaces of R1 and R2 can ping each other).
Make sure that the hardware part runs well, and then inspect software. For software,
inspect the global configuration of RIP first, including version, network, time basic, disable
interface and redistribute. Inspect whether these items are configured reasonably.
And then, inspect the RIP configuration of interfaces, such as the type of packets received
and sent by RIP interface, authentication mode and passive/active mode. For the special
default route and sub network advertisement, inspect the configurations of notify and
only-send-subnet.
3-16
3-17
1. Inspect whether the administrative and protocol states of two interconnected interfaces
are up. Inspect whether the cable connection is correct and the working state of
interface card is normal.
2. Inspect whether IP address configuration of interface is correct. Inspect whether the
pair of routers can ping each other successfully. Inspect whether the peer ARP can
be learnt.
3. ZXR10 M6000 supports RIPv1 and RIPv2 by default. Use the no version command to
restore the default setting. Use the show ip rip database command to view interface
address and network segment. Make sure that RIP timers of all routers are configured
consistently. Make sure that all of the RIP interfaces are enabled (the default setting
is that every interface is enabled). Use the show ip rip database command to inspect
whether the routes learnt form other routing protocols are redistributed to RIP.
4. Use the show running-config rip command to inspect the RIP configuration of
direct-connected interface. Make sure that the configurations of type of packets sent
and received, authentication type, passive/active are consistent. Use no ip rip on
interface to restore the default setting. Make sure that the correct authentication and
authentication string are configured on the interface to be authenticated.
If the fault cannot be solved according to the steps above, please ask for technical support.
3-18
Link state database is built according to Link State Advertisements (LSAs) which are
generated by all routers and spread over the whole OSPF network. There are many
types of LSAs, and a complete LSA set shows an accurate distribution diagram over the
whole network.
4-1
4-2
sending interval is 30 seconds. The adjacent routers must have the same Hello interval
so as to become neighbors.
2. Router dead-interval
The router dead-interval refers to the waiting time from the router receiving the last
hello packet to the router detecting that the neighbor is offline. The default router
dead-interval is four times of HELLO packet sending interval, which is applicable to all
network types.
3. Poll Interval
Poll interval only applies to NBMA network.
l There are only two routers in point-to point network or virtual links. The two routers
have to exchange the related routing information, so they can form an adjacency
automatically. A point-to-multipoint network can be regarded as a set of point-to-point
networks, so an adjacency is formed between each pair of routers.
l In a broadcast or an NBMA network, an adjacency may not be formed between two
neighbors. If adjacencies are already established among all routers (the number
of routers is "n" for example) on a network, each router will have "(n-1)" adjacent
connections and the network will have "n×(n-1)/2" adjacent connections.
In a large multi-access network, the router will be too heavy traffic if every one needs to
trace so many adjacent connections. Furthermore, the exchanging of routing information
between each adjacent routers wastes lots of network bandwidths.
Since a large multi-access network has a mass of redundancy information, OSPF defines
a DR and a BDR. The DR and BDR must form an adjacency with each OSPF router on
network. Each OSPF router only forms an adjacent relationships with DR and BDR. All
routers only send routing information to DR, and DR sends the information to other routers
in the same network segment. The two routers (neither DR nor BDR) do not establish an
4-3
adjacency between each other and neither will they exchange routing information. If the
DR stops working, the BDR will become a DR.
4-4
l Internal router
All interfaces of the router belong to the same OSPF area. An internal router only
generates a Router LSA and saves a Link-state Database (LSDB).
l Backbone router
A router that its one interface belongs to area 0 at least.
l ABR
A router that its one interface belongs to area 0 at least and one interface belongs to
other area at least.
All ABRs are backbone routers.
l Autonomous System Border Routers (ASBR)
The router has other routing protocols, such as static route, interface direct route and
RIP, IGRP and so on.
The advantages of area division are listed below,
l ABR generates LSAs according by using routes in its area after dividing areas, so
the routes can be aggregated firstly according to the rule of IP addresses, and then
generate LSAs. In this way, the number of LSAs is reduced a lot in an Autonomous
System (AS).
l After the area is divided, the changing of network topology is synchronized in the area
firstly. If the changing influences on the aggregated route, ABR will notify the changing
to other areas. In this way, most of topology changes are shielded in the area.
4-5
up adjacent relationships with itself in the network segment (it lists the Router IDs of
adjacent routers). A Network LSA is transmitted in the whole area at where it locates.
l Type 3: Network summary LSA
Network summary LSAs are generated by ABRs. When a ABR finishes routing
calculation in the area at where it locates, it enquires the routing table and
encapsulates each OSPF route into a Network Summary LSA. The Network
Summary LSAs are sent out area, which describe some information of a route, such
as the destination address, mask and cost. A Network summary LSA is transmitted
to all areas except the area which generates the LSA.
l Type 4: ASBR summary LSA
The ASBR summary LSA is also generated by an ABR. It describes the route that
goes to the ASBR in the area. The content of ASBR Summary LSA is almost the
same to that of Network summary LSA. The only difference is that the destination
address described by ASBR summary LSA is ASBR (host route, the mask is 0.0.0.0).
A ASBR summary LSA is transmitted to all areas except the area which generates
the LSA.
l Type 5: External LSA of AS
The external LSA of AS is generated by an ASBR. It mainly describes the information
of an route which goes to the external AS. An external LSA of AS contains some
information, such as destination address, mask and cost and so on. External LSA of
AS is an unique type that is independent of area. An external LSA of AS is transmitted
in the whole AS (except STUB area).
l Type 7: External LSA of Not-So-Stubby Area (NSSA)
External LSA of NSSA only applies to NSSA.
l Type 9: Local non-transparent LSA
l Type 10: Area non-transparent LSA
OSPF operation depends on all the routers in one area which share a common link state
database. Therefore, all LSAs are flooded through the area and the processing must be
reliable. A router which receives LSAs from a special area will flood the LSAs to other
interfaces which belong to the i area.
LSAs do not have their own packets, and they are contained in Link state Update (LSU)
packets. A LSU can contain many LSAs.
When a router receives a LSU, it abstracts the LSA from the packet and inputs the LSA to
its database. Meanwhile, the router constructs its own LSU and sends the updated LSU
to its adjacent neighbor router(s).
OSPF uses Link State Acknowledgement (LSAck) to confirm whether each LSA is
successfully received by its neighbor. A LSAck has the header of an acknowledged LSA,
which provides sufficient information for uniquely identifying an LSA.
When a router sends a LSA to an interface, the LSA is recorded in the retransmission
queue of the interface.
4-6
The router will wait the maximum time interval to receive the LSAck of LSA. If the router
does not receive the LSAck in the specified time, it will retransmit the LSA.
The router can send the original LSU in unicast or multicast mode, but the retransmitted
LSU is must in unicast mode.
4-7
4.1.13 DownBit
When Multiprotocol BGP (MP-BGP) routes are redistributed to OSPF vrf instance to
generate LSAs, the option fields of type-3 and type-5 LSAs must be marked as down bit.
The LSAs are displayed as Downward. This is a method to prevent routing loopback.
When a PE router detects that a LSA is already marked as down bit, the PE will not
participate in the OSPF route calculation. When OSPF routes are redistributed to BGP,
the LSAs with down bit are not redistributed to be BGP route.
4.1.14 Max-Metric
Considering the requirements for traffic management and so on, some routers need to act
as the terminal rather than transit points of the route. In order to add the nodes without the
capability of traversing to the network, the max-metric function is used.
For example, a router just restarts, and BGP route does not converge, use the max-metric
router-lsa on-startup wait-for-bgp command to avoid route black hole.
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enables OSPF process to
run OSPF and enters OSPF
configuration mode.
After OSPF protocol is enabled, one
of current interfaces will be chosen
as the address of OSPF router-id.
If no interface has IP address
on router, router-id will not be
selected. OSPF is dynamically got
by configuring an interface address
or configure route-id manually and
clear OSPF process.
4-8
Example
As shown in Figure 4-2, enable OSPF on R1 and R2 interfaces.
Router-ids of devices are listed below.
Device Router ID
R1 1.1.1.2
R2 1.1.1.3
R3 1.1.1.4
Configuration on R1:
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 30.0.0.1 255.255.255.252
R1(config-if)#exit
R1(config)#router ospf 10
R1(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 0
R1(config-ospfv2)#exit
4-9
Here, OSPF is configured on R1. OSPF is enabled. The Router-ID is the IP address of
interface fei-0/1/0/1.
Configure R2. To set up OSPF connection by using loopback address, the loopback
address has to be configured at first, and then enable OSPF process.
R2(config)#interface loopback1
R2(config-if)#ip adderss 1.1.1.3 255.255.255.255
R2(config-if)#exit
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 30.0.0.2 255.255.255.252
R2(config-if)#exit
R2(config)#interface fei-0/1/0/2
R2(config-if)#ip address 30.0.1.2 255.255.255.252
R2(config-if)#exit
R2(config)#router ospf 10
R2(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 0
R2(config-ospfv2)#network 30.0.1.0 0.0.0.3 area 0
R2(config-ospfv2)#exit
View OSPF information. Here, OSPF selects the IP address of loopback 1 as Router-ID
automatically.
R2(config-ospfv2)#show ip ospf
OSPF 10 Router ID 1.1.1.3 enable
Enabled for 00:00:09,Debug on
Number of areas 0, Normal 0, Stub 0, NSSA 0
Configuration on R3:
R3(config)#interface loopback1
R3(config-if)#ip adderss 1.1.1.4 255.255.255.255
R3(config-if)#exit
R3(config)#interface fei-0/1/0/1
R3(config-if)#ip address 30.0.1.1 255.255.255.252
R3(config-if)#exit
R3(config)#router ospf 10
R3(config-ospfv2)#network 30.0.1.0 0.0.0.3 area 0
R3(config-ospfv2)#exit
4-10
Here, use R3 to ping R1. If the ping is successful, the route is normal and OSPF runs
normally.
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enters OSPF configuration
mode.
3 ZXR10(config-ospfv2-if)#hello-interval < seconds> This sets the time interval for sending
HELLO packets on interface.
The unit is second, the range is
1–65535, and the default value is 10
seconds.
4-11
Example
As shown in Figure 4-3, modify the default priority on the OSPF interfaces of R1 and R2.
Device Router ID
R1 1.1.1.2
R2 1.1.1.3
Enable OSPF protocol on R1 and R2, and advertise the network segment.
Configuration on R1:
R1(config)#interface loopback1
R1(config-if)#ip adderss 1.1.1.2 255.255.255.255
R1(config-if)#exit
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 30.0.0.1 255.255.255.252
R1(config-if)#exit
R1(config)#router ospf 10
R1(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 0
R1(config-ospfv2)#router-id 1.1.1.2
R1(config-ospfv2)#exit
Configuration on R2:
R2(config)#interface loopback1
R2(config-if)#ip adderss 1.1.1.3 255.255.255.255
R2(config-if)#exit
4-12
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 30.0.0.2 255.255.255.252
R2(config-if)#exit
R2(config)#router ospf 10
R2(config-ospfv2)#router-id 1.1.1.3
R2(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 0
R2(config-ospfv2)#exit
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enters OSPF route mode.
4-13
ZXR10(config-ospfv2-if)#message-digest-key < keyid> md5 < This sets keyid and authentication
password> [ delay < time> ] encypt< password> [ delay < time> ] password on the interface which
uses MD5 authentication mode.
Parameter Description
md5 < password> Authentication password, the length is 1–16 characters (without
space)
delay < time> Time delay, the unit is minute, the range is 0–100000.
Example
As shown in Figure 4-4, configure authentication function on OSPF interfaces of R1 and
R2.
The router-ids of devices are listed below.
Device Router ID
R1 1.1.1.2
R2 1.1.1.3
R3 1.1.1.4
4-14
In area 0, set up OSPF neighborhood between R1 and R2. In area 1, set up OSPF
neighborhood between R2 and R3.
Configuration on R1:
R1(config)#interface loopback1
R1(config-if)#ip adderss 1.1.1.2 255.255.255.255
R1(config-if)#exit
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 30.0.0.1 255.255.255.252
R1(config-if)#exit
R1(config)#router ospf 10
R1(config-ospfv2)#router-id 1.1.1.2
R1(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 0
R1(config-ospfv2)#exit
Configuration on R2:
R2(config)#interface loopback1
R2(config-if)#ip adderss 1.1.1.3 255.255.255.255
R2(config-if)#exit
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 30.0.0.2 255.255.255.252
R2(config-if)#exit
R2(config)#interface fei-0/1/0/2
R2(config-if)#ip address 30.0.1.2 255.255.255.252
R2(config-if)#exit
R2(config)#router ospf 10
R2(config-ospfv2)#router-id 1.1.1.3
R2(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 0
R2(config-ospfv2)#network 30.0.1.0 0.0.0.3 area 1
4-15
R2(config-ospfv2)#exit
Configuration on R3:
R3(config)#interface loopback1
R3(config-if)#ip adderss 1.1.1.4 255.255.255.255
R3(config-if)#exit
R3(config)#interface fei-0/1/0/1
R3(config-if)#ip address 30.0.1.2 255.255.255.252
R3(config-if)#exit
R3(config)#router ospf 10
R3(config-ospfv2)#ospf-id 1.1.1.4
R3(config-ospfv2)#network 30.0.1.0 0.0.0.3 area 1
R3(config-ospfv2)#exit
Enable plain text authentication on the interfaces belonging to area 0, set authentication
password as zte.
Configuration on R1:
R1(config)#router ospf 10
R1(config-ospfv2)#area 0 authentication
R1(config-ospfv2)#interface fei-0/1/0/1
R1(config-ospfv2-if)# authentication
R1(config-ospfv2-if)# authentication-key zte
R1(config-ospfv2-if)#exit
Configuration on R2:
R2(config)#router ospf 1
R2(config-osp2f)#area 0 authentication
R2(config-ospfv2)#exit
R2(config-ospfv2)#interface fei-0/1/0/2
R2(config-ospfv2-if)#authentication
R2(config-ospfv2-if)#authentication-key zte
R2(config-ospfv2-if)#exit
Use the show ip ospf command to view the configuration that plain text authentication
already takes effect in area 0.
R2(config)#show ip ospf
OSPF 10 Router ID 1.1.1.2 enable
Enabled for 02:37:38,Debug on
Number of areas 1, Stub 0, Transit 0
……
Area 0.0.0.0 enable
Enabled for 02:37:38
Area has simple password authentication
Times spf has been run 32
Number of interfaces 1. Up 1
Number of ASBR local to this area 0
4-16
Enable MD5 authentication on the interfaces belonging to area 1. The key-id is 1, the
authentication password is zte.
Configuration on R2:
R2(config)#router ospf 10
R2(config-ospfv2)#area 1 authentication message-digest
R2(config-ospfv2)#interface fei-0/1/0/2
R2(config-ospfv2-if)# authentication message-digest
R2(config-ospfv2-if)# message-digest-key 1 md5 zte
R2(config-ospfv2-if)#exit
Configuration on R3:
R3(config)#router ospf 1
R3(config-ospfv2)#area 1 authentication message-digest
R3(config-ospfv2)#interface fei-0/1/0/1
R3(config-ospfv2-if)# authentication message-digest
R3(config-ospfv2-if)# message-digest-key 1 md5 zte
R3(config-ospfv2-if)#exit
View the information of OSPF interface on R3 that the authentication mode is MD5.
R3(config)#show ip ospf interface fei-0/1/0/1
OSPF Router with ID (1.1.1.4) (Process ID 10)
Fei-0/1/0/1 is up
Internet Address 30.0.1.1 255.255.255.252 enable
Up for 00:09:38
In the area 0.0.0.1 BDR
Cost 1, Priority 1, Network Type broadcast
Transmit Delay(sec) 1, Authentication Type message-digest
……
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enters OSPF route configuration
mode.
2 ZXR10(config-ospfv2)#area < area-id> stub [ default-cost < cost> ] This sets an area as stub area.
4-17
3 ZXR10(config-ospfv2)#area < area-id> stub no-summary [ This configures ABR not to introduce
default-cost < cost> ] any type-3 route information on stub
area and only has one default type-3
LSA.
Parameter descriptions:
Parameter Description
no-summary This disables ABR to send summary route information to stub area.
default-cost < cost> The cost of a default route advertised to stub area. The range is
0–65535.
Example
As shown in Figure 4-5, set area 1 as stub area.
The router-IDs of devices are listed below.
Device Router ID
R1 1.1.1.2
R2 1.1.1.3
R3 1.1.1.4
Figure 4-5 OSPF Stub and Totally Stubby Area Configuration Example
R1 configuration,
R1(config)#interface loopback1
R1(config-if)#ip adderss 1.1.1.2 255.255.255.255
R1(config-if)#exit
4-18
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 30.0.0.1 255.255.255.252
R1(config-if)#exit
R1(config)#interface fei-0/1/0/2
R1(config-if)#ip address 30.0.2.1 255.255.255.252
R1(config-if)#exit
R1(config)#router ospf 10
R1(config-ospfv2)#router-id 1.1.1.2
R1(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 0
R1(config-ospfv2)#redistribute connected
R1(config-ospfv2)#exit
R2 configuration,
R2(config)#interface loopback1
R2(config-if)#ip adderss 1.1.1.3 255.255.255.255
R2(config-if)#exit
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 30.0.0.2 255.255.255.252
R2(config-if)#exit
R2(config)#interface fei-0/1/0/2
R2(config-if)#ip address 30.0.1.2 255.255.255.252
R2(config-if)#exit
R2(config)#router ospf 10
R2(config-ospfv2)#router-id 1.1.1.3
R2(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 0
R2(config-ospfv2)#network 30.0.1.0 0.0.0.3 area 1
R2(config-ospfv2)#area 1 stub
R2(config-ospfv2)#exit
R3 configuration,
R3(config)#interface loopback1
R3(config-if)#ip adderss 1.1.1.4 255.255.255.255
R3(config-if)#exit
R3(config)#interface fei-0/1/0/1
R3(config-if)#ip address 30.0.1.2 255.255.255.252
R3(config-if)#exit
R3(config)#router ospf 10
R3(config-ospfv2)#router-id 1.1.1.4
R3(config-ospfv2)#network 30.0.1.0 0.0.0.3 area 1
R3(config-ospfv2)#area 1 stub
R3(config-ospfv2)#exit
4-19
R2(config-ospfv2)#exit
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enters OSPF route mode.
Parameters Description
no-redistribution Do not redistribute NSSA link state advertisement to the NSSA area
metric < metric-value> The cost of advertising default route link state of type 7, ranging from
0–16777214
metric-type < type> The type of default route link state advertisement of type 7, ext-1 and
ext-2
no-summary Do not send summary link state advertisement to the NSSA area
translator-stab-intv< stab-intv The time length for keeping translator role after translator qualification
is lost.
4-20
Example
As shown in Figure 4-6, set area 1 as NSSA area.
The router-IDs of devices are listed below.
Device Router-ID
R1 1.1.1.2
R2 1.1.1.3
R3 1.1.1.4
Configuration on R1:
R1(config)#interface loopback1
R1(config-if)#ip adderss 1.1.1.2 255.255.255.255
R1(config-if)#exit
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 30.0.0.1 255.255.255.252
R1(config-if)#exit
R1(config)#interface fei-0/1/0/2
R1(config-if)#ip address 30.0.2.1 255.255.255.252
R1(config-if)#exit
R1(config)#router ospf 10
R1(config-ospfv2)#router-id 1.1.1.2
R1(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 0
R1(config-ospfv2)#redistribute connected
R1(config-ospfv2)#exit
Configuration on R2:
4-21
R2(config)#interface loopback1
R2(config-if)#ip adderss 1.1.1.3 255.255.255.255
R2(config-if)#exit
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 30.0.0.2 255.255.255.252
R2(config-if)#exit
R2(config)#interface fei-0/1/0/2
R2(config-if)#ip address 30.0.1.2 255.255.255.252
R2(config-if)#exit
R2(config)#router ospf 10
R2(config-ospfv2)#router-id 1.1.1.3
R2(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 0
R2(config-ospfv2)#network 30.0.1.0 0.0.0.3 area 1
R2(config-ospfv2)#area 1 nssa default-information-originate
R2(config-ospfv2)#exit
Configuration on R3:
R3(config)#interface loopback1
R3(config-if)#ip adderss 1.1.1.4 255.255.255.255
R3(config-if)#exit
R3(config)#interface fei-0/1/0/1
R3(config-if)#ip address 30.0.1.2 255.255.255.252
R3(config-if)#exit
R3(config)#interface fei-0/1/0/2
R3(config-if)#ip address 30.0.3.1 255.255.255.252
R3(config-if)#exit
R3(config)#router ospf 10
R3(config-ospfv2)#router-id 1.1.1.4
R3(config-ospfv2)#network 30.0.1.0 0.0.0.3 area 1
R3(config-ospfv2)#redistribute connected
R3(config-ospfv2)#area 1 nssa
R3(config-ospfv2)#exit
Perform the following configuration on ABR router R2 to forbid the route of type 3 to
advertise to the NSSA area if required.
R2(config)#router ospf 10
R2(config-ospfv2)#area 1 nssa default-information-originate no-summary
R2(config)#exit
4-22
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enters OSPF route mode.
2 ZXR10(config-ospfv2)#area < area-id> range < ip-address> This sets the range of summary
< net-mask> { summary-link | nssa-external-link } [ advertise | addresses in area.
not-advertise] [ tag < tag-value> ]
Parameter Description
tag < tag-value> Set tag of summary lsa, type-7 summary has this configuration, the
range is 0–4294967295
Example
As shown in Figure 4-7, configure OSPF on R1, R2 and R3. R2 acts as ABR, configure
route aggregation on R2.
The router-ID of devices are listed below.
Device Router-ID
R1 1.1.1.2
R2 1.1.1.3
R3 1.1.1.4
Configuration on R1:
4-23
R1(config)#interface loopback1
R1(config-if)#ip adderss 1.1.1.2 255.255.255.255
R1(config-if)#exit
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 30.0.0.2 255.255.255.252
R1(config-if)#exit
R1(config)#interface fei-0/1/0/2
R1(config-if)#ip address 2.2.2.5 255.255.255.252
R1(config-if)#exit
R1(config)#interface fei-0/1/0/3
R1(config-if)#ip address 2.2.2.1 255.255.255.252
R1(config-if)#exit
R1(config)#router ospf 1
R1(config-ospfv2)#router-id 1.1.1.2
R1(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 1
R1(config-ospfv2)#network 2.2.2.0 0.0.0.3 area 1
R1(config-ospfv2)#network 2.2.2.4 0.0.0.3 area 1
R1(config-ospfv2)#exit
Configuration on R2:
R2(config)#interface loopback1
R2(config-if)#ip adderss 1.1.1.3 255.255.255.255
R2(config-if)#exit
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 30.0.0.1 255.255.255.252
R2(config-if)#exit
R2(config)#interface fei-0/1/0/2
R2(config-if)#ip address 30.0.1.1 255.255.255.252
R2(config-if)#exit
R2(config)#router ospf 1
R2(config-ospfv2)#router-id 1.1.1.3
R2(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 1
R2(config-ospfv2)#network 30.0.1.0 0.0.0.3 area 0
R2(config-ospfv2)#exit
Configuration on R3:
R3(config)#interface loopback1
R3(config-if)#ip adderss 1.1.1.4 255.255.255.255
R3(config-if)#exit
R3(config)#interface fei-0/1/0/1
R3(config-if)#ip address 30.0.1.2 255.255.255.252
R3(config-if)#exit
R3(config)#router ospf 1
R3(config-ospfv2)#router-id 1.1.1.4
R3(config-ospfv2)#network 30.0.1.0 0.0.0.3 area 0
4-24
R3(config-ospfv2)#exit
View routing table on R3 after finishing the configuration that a route is not aggregated.
R3#show ip forwarding route
IPv4 Routing Table:
Dest Mask Gw Interface Owner pri metric
1.1.1.2 255.255.255.255 30.0.1.1 fei-0/1/0/1 ospf 110 20
1.1.1.4 255.255.255.255 1.1.1.4 loopback1 address 0 0
2.2.2.0 255.255.255.252 30.0.1.1 fei-0/1/0/1 ospf 110 20
2.2.2.4 255.255.255.252 30.0.1.1 fei-0/1/0/1 ospf 110 20
30.0.0.0 255.255.255.252 30.0.1.1 fei-0/1/0/1 ospf 110 2
30.0.1.0 255.255.255.252 30.0.1.2 fei-0/1/0/1 direct 0 0
30.0.1.2 255.255.255.255 30.0.1.2 fei-0/1/0/1 address 0 0
The default setting of "area 1 range 2.2.2.2 255.255.255.248 "is advertise. When the no
t-advertise keyword is chosen, aggregated route of 2.2.2.0 network segment will not be
shown on R3, and this network segment cannot be pinged, as shown below.
R2(config-ospfv2)#area 1 range 2.2.2.0 255.255.255.248
summary-link not-advertise
R3(config)#show ip route
IPv4 Routing Table:
Dest Mask Gw Interface Owner pri metric
1.1.1.4 255.255.255.255 1.1.1.4 loopback1 address 0 0
30.0.0.0 255.255.255.252 30.0.1.1 fei-0/1/0/1 ospf 110 2
30.0.1.0 255.255.255.252 30.0.1.2 fei-0/1/0/1 direct 0 0
30.0.1.2 255.255.255.255 30.0.1.2 fei-0/1/0/1 address 0 0
Here, R3 does not learn the routing information of 2.2.2.0. The aggregated information of
2.2.2.0 still exists in R2 database, but not to be advertised to other areas.
4-25
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enters OSPF route mode.
2 ZXR10(config-ospfv2)#summary-address < ip-address> < net-mask> This sets up summary address for
OSPF and summarizes other routing
protocol paths redistributed to the
OSPF.
Example
As shown in Figure 4-8, configure OSPF on R1, R2 and R3. Advertise external route of
R1, and configure ASBR route aggregation on R1.
The router-ID of devices are listed below.
Device Router-ID
R1 1.1.1.2
R2 1.1.1.3
R3 1.1.1.4
Configuration on R1:
R1(config)#interface loopback1
R1(config-if)#ip adderss 1.1.1.2 255.255.255.255
4-26
R1(config-if)#exit
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 30.0.0.2 255.255.255.252
R1(config-if)#exit
R1(config)#interface fei-0/1/0/2
R1(config-if)#ip address 2.2.2.5 255.255.255.252
R1(config-if)#exit
R1(config)#interface fei-0/1/0/3
R1(config-if)#ip address 2.2.2.1 255.255.255.252
R1(config-if)#exit
R1(config)#router ospf 1
R1(config-ospfv2)#router-id 1.1.1.2
R1(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 1
R1(config-ospfv2)#redistribute connected
R1(config-ospfv2)#summary-address 2.2.2.0 255.255.255.248
R1(config-ospfv2)#exit
Configuration on R2:
R2(config)#interface loopback1
R2(config-if)#ip adderss 1.1.1.3 255.255.255.255
R2(config-if)#exit
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 30.0.0.1 255.255.255.252
R2(config-if)#exit
R2(config)#interface fei-0/1/0/2
R2(config-if)#ip address 30.0.1.1 255.255.255.252
R2(config-if)#exit
R2(config)#router ospf 1
R2(config-ospfv2)#router-id 1.1.1.3
R2(config-ospfv2)#network 30.0.0.0 0.0.0.3 area 1
R2(config-ospfv2)#network 30.0.1.0 0.0.0.3 area 0
R2(config-ospfv2)#exit
Configuration on R3:
R3(config)#interface loopback1
R3(config-if)#ip adderss 1.1.1.4 255.255.255.255
R3(config-if)#exit
R3(config)#interface fei-0/1/0/1
R3(config-if)#ip address 30.0.1.2 255.255.255.252
R3(config-if)#exit
R3(config)#router ospf 1
R3(config-ospfv2)#router-id 1.1.1.4
R3(config-ospfv2)#network 30.0.1.0 0.0.0.3 area 0
R3(config-ospfv2)#exit
4-27
View R2 routing table. There is an aggregated network segment 2.2.2.0/29 exists in routing
table.
R2(config)#show ip forwarding route
IPv4 Routing Table:
Dest Mask Gw Interface Owner pri metric
1.1.1.2 255.255.255.255 30.0.0.2 fei-0/1/0/1 ospf 110 20
1.1.1.3 255.255.255.255 1.1.1.3 loopback1 address 0 0
2.2.2.0 255.255.255.248 30.0.0.2 fei-0/1/0/1 ospf 110 20
30.0.0.0 255.255.255.252 30.0.0.1 fei-0/1/0/1 direct 0 0
30.0.0.1 255.255.255.255 30.0.0.1 fei-0/1/0/1 address 0 0
30.0.1.0 255.255.255.252 30.0.1.1 fei-0/1/0/2 direct 0 0
30.0.1.1 255.255.255.255 30.0.1.1 fei-0/1/0/2 address 0 0
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enables OSPF process and
runs OSPF.
Parameter Description
protocol Filter according to protocol types, valuing as connected, static and RIP,
bgp-ext and bgp-int, IS-IS-1, IS-IS-1-2, IS-IS-2, ospf-int and ospf-ext
4-28
Parameter Description
metric < metric-value> Metric value of redistributed LSA. By default, use system default
metric, ranging from 0 to 16777214.
metric-type < type> The metric-type of redistributed lsa, valuing ext-1 and ext-2. By
default, it is ext-2.
route-map < map-tag> Set the redistributed route mapping name, the length is 1–16
characters.
Device Router-ID
R1 1.1.1.2
R2 1.1.1.3
Configuration on R2:
R2(config)#interface loopback1
R2(config-if)#ip adderss 1.1.1.3255.255.255.255
R2(config-if)#exit
R2(config)#interface fei-0/1/0/1
4-29
Configuration on R2:
R3(config)#interface fei-0/1/0/1
R3(config-if)#ip address 30.0.1.2 255.255.255.252
R3(config-if)#exit
R3(config)#interface fei-0/1/0/2
R3(config-if)#ip address 30.0.2.1 255.255.255.252
R3(config-if)#exit
R3(config)#router rip
R3(config-rip)#network 30.0.1.0 0.0.0.3
R3(config-rip)#network 30.0.2.0 0.0.0.3
R3(config-rip)#exit
R1(config)#router ospf 1
R1(config-ospfv2)# redistribute connected
4-30
R1(config-ospfv2)#exit
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enters OSPF configuration
mode.
2 ZXR10(config-ospfv2)#notify default route [ always] [ metric < When router obtains a default
metric-value> ] [ metric-type < type> ] [ route-map < map-tag> ] route 0/0 through other protocols or
configuring static route, the default
route is needed to be advertised.
If there is no default route, the detail
reachable route is advertised by
normal way.
The router will be an ASBR after this
command is used.
Parameter Description
always If always is specified, it means that the default route will be advertised
no matter whether it exists. If not, whether to advertise the default
route is determined by whether the default route exists in the routing
table. If the default route exists, it will be advertised. Otherwise, the
default route is not advertised.
metric-type < type> Type of the default route, ext-1 or ext-2, ext-2 by default
route-map < map-tag> The name of the route map for generating the default route, 1–16
characters.
4-31
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enters OSPF route mode.
2 ZXR10(config-ospfv2)#area < area-id> virtual-link < router-id> This defines an OSPF virtual link.
[ hello-interval < seconds> ] [ retransmit-interval < seconds> Use the no command to delete the
] [ transmit-delay < seconds> ] [ dead-interval < seconds> ] [ designated virtual link.
authentication-key < key> ] [ message-digest-key < keyid> md5 < Virtual link cannot be created in area
cryptkey> [ delay < time> ] ] [ authentication [ null| message-digest] ] 0, stub and NSSA area.
Parameter Description
< area-id> Identifier of transmission area where virtual link transits, cannot be
stub or nssa area or area 0
< router-id> Router ID of the peer of virtual link, it is an IP address in dotted decimal
hello-interval < seconds> Time interval for sending HELLO packets on virtual link, the range is
1–8192 seconds, 10 seconds by default.
retransmit-interval < seconds> Retransmission interval on virtual link, the range is 1–8192 seconds, 5
seconds by default
transmit-delay < seconds> Time delay for transmitting a link state update packet on virtual link,
the range is 1–8192 seconds, 1 second by default
dead-interval < seconds> Time interval for neighbor dead, the range is 1–8192 seconds, 40
seconds by default.
Example
As shown in Figure 4-10, set up virtual link connection between the interconnected
interfaces of R2 and R3.
Router-ID of devices are listed below.
Device Router-ID
R1 1.1.1.2
R2 1.1.1.3
R3 1.1.1.4
4-32
Configuration on R1:
R1(config)#interface loopback1
R1(config-if)#ip address 1.1.1.2 255.255.255.255
R1(config-if)#exit
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 10.0.0.1 255.255.255.252
R1(config-if)#exit
R1(config)#router ospf 1
R1(config-ospfv2)#network 10.0.0.0 0.0.0.3 area 0
R1(config-ospfv2)#exit
Configuration on R2:
R2(config)#interface loopback1
R2(config-if)#ip address 1.1.1.3 255.255.255.255
R2(config-if)#exit
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 10.0.0.2 255.255.255.252
R2(config-if)#exit
R2(config)#interface fei-0/1/0/2
R2(config-if)#ip address 10.0.1.1 255.255.255.252
R2(config-if)#exit
R2(config)#router ospf 1
R2(config-ospfv2)#network 10.0.0.0 0.0.0.3 area 0
R2(config-ospfv2)#network 10.0.1.0 0.0.0.3 area 1
R2(config-ospfv2)#area 1 virtual-link 1.1.1.4
Configuration on R3:
R3(config)#interface loopback1
R3(config-if)#ip address 1.1.1.4 255.255.255.255
R3(config-if)#exit
R3(config)#interface fei-0/1/0/1
R3(config-if)#ip address 10.0.1.2 255.255.255.252
4-33
R3(config-if)#exit
R3(config)#interface fei-0/1/0/2
R3(config-if)#ip address 2.2.2.6 255.255.255.252
R3(config-if)#exit
R3(config)#router ospf 1
R3(config-ospfv2)#network 10.0.1.0 0.0.0.3 area 0.0.0.1
R3(config-ospfv2)#network 2.2.2.4 0.0.0.3 area 0.0.0.2
R3(config-ospfv2)#area 1 virtual-link 1.1.1.3
R3(config-ospfv2)#exit
Enable sham-link between PE routers, set up neighborhood and interact database. In this
way, private network routers belonging to the same area can learn two inner-area routes,
4-34
one route uses sham-link (MPLS VPN Backbone), another uses private network. To select
a route, modify metric attribute of route.
To configure sham-link on a PE, perform the following steps.
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enters OSPF configuration
mode.
2 ZXR10(config-ospfv2)#area < area-id> sham-link < router-id1> < This sets up MPLS VPN between
router-id2> two PE routers to transmit OSPF
protocol packets.
Parameter descriptions:
Parameter Description
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enters OSPF route mode.
4-35
4 ZXR10(config-ospfv2)#max-metric router-lsa on-startup < seconds> This configures the waiting time after
restarting to avoid route black hole.
and then the router can be through
in seconds, in range of 5-86400.
That is to say, router needs to
wait some time and then it can be
accessed by other devices.
The unit is second, the range is
5-86400.
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enters OSPF route configuration
mode.
4-36
1 ZXR10(config)#router ospf < process-id> [ vrf < vrf-name> ] This enters OSPF route configuration
mode.
4-37
Command Function
ZXR10#show ip ospf interface [ < interface-name> ] [ process < process-id> ] This shows the information of OSPF
interface.
ZXR10#show ip ospf database [ database-summary | adv-router < router-id> This shows the information about OSPF
| self-originate] [ area < area-id> ] [ process < process-id> ] link database.
ZXR10#show ip ospf database router [ < link-state-id> ] [ adv-router < This shows the information of
router-id> | self-originate] [ area < area-id> ] [ process < process-id> ] router-LSA in OSPF data link state
database.
ZXR10#show ip ospf database network [ < link-state-id> ] [ adv-router < This shows the information of network
router-id> | self-originate] [ area < area-id> ] [ process < process-id> ] LSA in OSPF data link state database.
ZXR10#show ip ospf database summary [ < link-state-id> ] [ adv-router < This shows the information of summary
router-id> | self-originate] [ area < area-id> ] [ process < process-id> ] LSA in OSPF link state database.
ZXR10#show ip ospf database asbr-summary [ < link-state-id> ] [ adv-router This shows the information of
< router-id> | self-originate] [ area < area-id> ] [ process < process-id> ] asbr-summary LSA in OSPF link state
database.
ZXR10#show ip ospf database external [ < link-state-id> ] [ adv-router < This shows the information of external
router-id> | self-originate] [ area < area-id> ] [ process < process-id> ] LSA in OSPF link state database.
ZXR10#show ip ospf database nssa [ < link-state-id> ] [ adv-router < This shows the information of NSSA
router-id> | self-originate] [ area < area-id> ] [ process < process-id> ] LSA in OSPF link state database.
ZXR10#show ip ospf database { opaque-area | opaque-link} [ < link-state-id> This shows the information of
] [ adv-router < router-id> | self-originate] [ area < area-id> ] [ process < opaque-area LSA and opaque-link LSA
process-id> ] in OSPF link state database.
4-38
Domain ID type 0x5,value 0.0.0.1 The type of domain ID is 0x5, the value is 0.0.0.1
Number of areas 2, Normal 2, Stub 0, There are 2 domains, 2 normal domains and 0 stub area, 0 NSSA
NSSA 0 domain
Area 0.0.0.0 enable (Demand circuit The detailed content of each domain
available) and the following contents
4-39
Up for 00:17:51
In the area 0.0.0.0 DR
Cost 1, Priority 1, Network Type broadcast
Transmit Delay(sec) 1, Authentication Type null
Timer intervals(sec) : Hello 10, Dead 40, Retransmit 5
Designated Router (ID) 100.100.100.14,
Interface address 100.100.100.14
Backup Designated router (ID) 100.1.1.2,
Interface address 100.100.100.12
Number of Neighbors 1, Number of Adjacent neighbors 1
100.1.1.2 BDR
fei-0/1/0/2 is up
Internet Address 1.1.1.1 255.255.255.0 enable
Up for 00:16:25
In the area 0.0.0.1 DR
Cost 1, Priority 1, Network Type broadcast
Transmit Delay(sec) 1, Authentication Type null
Timer intervals(sec) : Hello 10, Dead 40, Retransmit 5
Designated Router (ID) 100.100.100.14, Interface address 1.1.1.1
Backup Designated router (ID) 100.1.1.2, Interface address 1.1.1.10
Number of Neighbors 1, Number of Adjacent neighbors 1
100.1.1.2 BDR
Timer intervals(sec) : Hello 10, Dead 40, The time interval for sending HELLO packet is 10 seconds, the dead
Retransmit 5 time is 40 seconds, and LSA retransmission interval is 5 seconds.
4-40
Link ID LSA ID
Checksum Checksum
An example of the show ip ospf database router command output is shown below.
ZXR10#show ip ospf database router
OSPF Router with ID (110.1.1.1) (Process ID 1)
Router Link States (Area 0.0.0.1)
Routing Bit Set on this LSA
LS age: 1700
Options: (No TOS-capability, No DC)
LS Type: Router Links
Link State ID: 110.1.1.1
Advertising Router: 110.1.1.1
LS Seq Number: 0x8000001f
Checksum: 0xf9e7
Length: 36
Number of Links: 1
Link connected to: a Stub Network
(Link ID) Network/subnet number: 110.1.0.0
(Link Data) Network Mask: 255.255.0.0
Number of TOS metrics: 0
TOS 0 Metrics: 1
4-41
Link State ID LS ID
Checksum Checksum
Length Length
An example of the show ip ospf database network command output is shown below.
Link State ID LS ID
Checksum Checksum
Length Length
An example of the show ip ospf database summary command output is shown below.
ZXR10#show ip ospf database summary
OSPF Router with ID (110.1.1.1) (Process ID 1)
4-42
Link State ID LS ID
Checksum Checksum
Length Length
An example of the show ip ospf database external command output is shown below.
4-43
Link State ID LS ID
An example of the show ip ospf database asbr-summary command output is shown below.
ZXR10#show ip ospf database asbr-summary
OSPF Router with ID (110.1.1.1) (Process ID 1)
Summary ASB Link States (Area 0.0.0.0)
LS age: 68
Options: (No TOS-capability, No DC)
LS Type: Summary Links(AS Boundary Router)
Link State ID: 168.1.1.3 (AS Boundary Router address)
Advertising Router: 110.1.1.1
LS Seq Number: 0x80000001
Checksum: 0xc875
Length: 28
Network Mask: /0
TOS: 0 Metric: 1
Link State ID LS ID
Checksum Checksum
Command Function
ZXR10#debug ip ospf adj < process-id> This enables the function that send
the debugging information of OSPF
adjacency events.
4-44
Command Function
ZXR10#debug ip ospf all < process-id> This enables all functions of OSPF
debugging.
ZXR10#debug ip ospf cspf < process-id> This enables the debugging function of
OSPF constrained-based shortest path
calculation.
ZXR10#debug ip ospf database-timer< process-id> This enables the function that send the
debugging information of OSPF link
state database timer events.
ZXR10#debug ip ospf events < process-id> This enables the function that send
the debugging information of OSPF
important events.
ZXR10#debug ip ospf fast-reroute[ external | inter | intra | nbrspf] < This enables the function that send the
process-id> debugging information of OSPF fast
reroute.
ZXR10#debug ip ospf flood < process-id> This enables the function that send
the debugging information of OSPF
flooding events.
ZXR10#debug ip ospf lsa-generation < process-id> This enables the function that send
debugging information of OSPF LSA
generation.
ZXR10#debug ip ospf nsf < process-id> This makes OSPF forward event
debugging information without
interruption.
ZXR10#debug ip ospf packet < process-id> This monitors the sending and receiving
of all OSPF packets.
ZXR10#debug ip ospf retransmission < process-id> This enables the function that send
the debugging information of OSPF
retransmission queue events.
ZXR10#debug ip ospf spf [ external | inter | intra] < process-id> This enables the function that send the
debugging information of OSPF route
calculation events.
4-45
OSPF: send v:2 t:1 l:48 rid:100.100.100.20 Send a OSPFv2 Hello packet, the ttl is 1, the packet length (1) is 48
aid:0.0.0.1 chk:a367 aut:0 auk: bytes, and the router-ID is 100.100.100.20, the domain ID is 0.0.0.1,
the checksum (chk) is a367, and the authentication type (aut) is 0,
authentication key (auk) is null.
OSPF: Rcv hello from 100.100.100.14 area The interface 100.100.100.20 receives a Hello packet from IP address
0.0.0.0 on intf 100.100.100.20 100.100.100.14 in area 0.
4-46
Configuration Thought
1. Configure IP addresses of the interconnected interfaces between R1 and R2, and
configure loopback interface IP address.
2. Add interfaces to OSPF area 0.
3. Configure load balancing on both R1 and R2. R1 and R2 can learn the loopback
address route advertised by the peer through two links.
Configuration Commands
Configuration on R1:
R1(config)#interface gei-0/2/0/3
R1(config-if)#ip address 11.22.1.1 255.255.255.0
R1(config-if)#exit
R1(config)#interface gei-0/2/0/4
R1(config-if)#ip address 11.22.10.1 255.255.255.0
R1(config-if)#exit
R1(config)#interface loopback1
R1(config-if)#ip address 1.1.1.11 255.255.255.255
R1(config-if)#exit
R1(config)#router ospf 1
R1(config-ospfv2)# network 11.22.1.0 0.0.0.255 area 0
R1(config-ospfv2)# network 11.22.10.0 0.0.0.255 area 0
R1(config-ospfv2)# network 1.1.1.11 0.0.0.0 area 0
R1(config-ospfv2)# maximum-paths 2
Configuration on R2:
R2(config)#interface gei-0/2/0/1
R2(config-if)#ip address 11.22.1.2 255.255.255.0
R2(config-if)#exit
R2(config)#interface gei-0/2/0/2
R2(config-if)#ip address 11.22.10.2 255.255.255.0
R2(config-if)#exit
R2(config)#interface loopback2
R2(config-if)#ip address 1.1.1.22 255.255.255.255
R2(config-if)#exit
R2(config)#router ospf 1
4-47
Configuration Verification
The following information will be shown after the configuration above is finished. It shows
that R1 and R2 set up neighborhood already.
R1 and R2 ping the loopback interface of the peer between each other, and the pings are
successful. It shows that the configuration is successful.
R1#show ip ospf neighbor
4-48
Configuration Thought
1. Set up link between R1 and R2 in NSSA area 255, and set up link between R2 and
R3 in area 0.
2. Redistribute direct-connected route on R3 and R1 respectively.
3. Configure NSSA default route advertisement on R2.
4. As a result, R1 cannot learn the detailed route of R3 address, but there is a default
route pointing to R2. R3 can learn the direct-connected route redistributed by R1.
Configuration Commands
Configuration on R1:
R1(config)#interface gei-0/2/0/1
R1(config-if)#ip address 11.22.1.1 255.255.255.0
R1(config-if)#exit
R1(config)#interface loopback1
R1(config-if)#ip address 1.1.1.11 255.255.255.255
R1(config-if)#exit
R1(config)#router ospf 1
R1(config-ospfv2)# network 11.22.1.0 0.0.0.255 area 255
R1(config-ospfv2)# area 255 nssa
R1(config-ospfv2)# redistribute connected
Configuration on R2:
R2(config)#interface gei-0/2/0/2
R2(config-if)#ip address 11.22.1.2 255.255.255.0
R2(config-if)#exit
R2(config)#interface gei-0/2/0/4
R2(config-if)#ip address 33.22.1.2 255.255.255.0
R2(config-if)#exit
R2(config)#router ospf 1
R2(config-ospfv2)# network 11.22.1.0 0.0.0.255 area 255
R2(config-ospfv2)# area 255 nssa default-information-originate
R2(config-ospfv2)# network 33.22.1.0 0.0.0.255 area 0
4-49
Configuration on R3:
R3(config)#interface gei-0/2/0/5
R3(config-if)#ip address 33.22.1.1 255.255.255.0
R3(config-if)#exit
R3(config)#interface loopback1
R3(config-if)#ip address 1.1.1.33 255.255.255.255
R3(config-if)#exit
R3(config)#router ospf 1
R3(config-ospfv2)# redistribute connected
Configuration Verification
Use the show ip forwarding route 1.1.1.33 command on R1 to view whether R1 learns the
detailed route of R3.
R1(config)# show ip forwarding route 1.1.1.33
IPv4 Routing Table:
Dest Gw Interface Owner Pri Metric
Use the show ip forwarding route 0.0.0.0 command on R1 to view whether there is a default
route pointing to R2.
R1(config)# show ip forwarding route 0.0.0.0
IPv4 Routing Table:
Dest Gw Interface Owner Pri Metric
0.0.0.0/0 11.22.1.2 gei-0/2/0/2 OSPF 110 2
Use the show ip forwarding route 1.1.1.11 command to inspect whether R3 learns the
detailed route of R1.
R3(config)#show ip forwarding route 1.1.1.11
IPv4 Routing Table:
Dest Gw Interface Owner Pri Metric
1.1.1.11/32 33.32.1.1 gei-0/2/0/4 OSPF 110 2
4-50
same VPN/pbulic network share the same VPN/public network routing table. This is mainly
to divide and isolate networks.
In the following example, CE1 isolates the information flooded by PE1 and PE2. The
network topology is shown in Figure 4-14.
Configuration Thought
1. PE1 and CE1 establish OSPF neighbor relationship.
2. PE2 and CE1 establish OSPF neighbor relationship.
3. PE2 should not learn the link-state information related to vpn1.
Configuration Commands
Configuration on PE1:
PE1(config)#interface loopback1
PE1(config-if)#ip vrf forwarding vpn1
PE1(config-if)#ip address 1.1.1.17 255.255.255.255
PE1(config-if)#exit
PE1(config)#interface Int1
PE1(config-if)#ip vrf forwarding vpn1
PE1(config-if)#ip address 100.101.102.17 255.255.255.0
PE1(config-if)#exit
PE1(config)#router ospf 1 vrf vpn1
PE1(config-ospfv2)#network 1.1.1.17 0.0.0.0 area 0
PE1(config-ospfv2)#network 100.101.102.0 0.0.0.255 area 0
PE1(config-ospfv2)#exit
Configuration on CE1:
CE1(config)#interface loopback1
CE1(config-if)#ip address 1.1.1.18 255.255.255.255
CE1(config-if)#exit
CE1(config)#interface loopback2
CE1(config-if)#ip address 2.2.2.18 255.255.255.255
CE1(config-if)#exit
4-51
CE1(config)#interface Int2
CE1(config-if)#ip address 100.101.102.18 255.255.255.0
CE1(config-if)#exit
CE1(config)#interface Int3
CE1(config-if)#ip address 100.102.102.18 255.255.255.0
CE1(config-if)#exit
CE1(config)#router ospf 1
CE1(config-ospfv2)#network 1.1.1.18 0.0.0.0 area 0
CE1(config-ospfv2)#network 100.101.102.0 0.0.0.255 area 0
CE1(config-ospfv2)#exit
CE1(config)#router ospf 2
CE1(config-ospfv2)#network 2.2.2.18 0.0.0.0 area 0
CE1(config-ospfv2)#network 100.102.102.0 0.0.0.255 area 0
CE1(config-ospfv2)#exit
Configuration on PE2:
PE2(config)#interface loopback1
PE2(config-if)#ip vrf forwarding vpn2
PE2(config-if)#ip address 1.1.1.19 255.255.255.255
PE2(config-if)#exit
PE2(config)#interface Int4
PE2(config-if)#ip vrf forwarding vpn2
PE2(config-if)#ip address 100.102.102.17 255.255.255.0
PE2(config-if)#exit
PE2(config)#router ospf 1 vrf vpn2
PE2(config-ospfv2)#network 1.1.1.19 0.0.0.0 area 0
PE2(config-ospfv2)#network 100.102.102.0 0.0.0.255 area 0
PE2(config-ospfv2)#exit
Configuration Verification
CE1 can learn the looback1 route advertised by PE1 and the loopback1 route advertised
by PE2. PE2 and PE1 cannot learn routes from each other. This indicates that the
multi-instance configuration takes effect.
CE1#show ip forwarding route ospf
IPv4 Routing Table:
Dest Gw Interface Owner Pri Metric
1.1.1.17/32 100.101.102.17 int2 ospf 110 2
1.1.1.18/32 100.102.102.17 int3 ospf 110 2
4-52
Configuration Thought
1. Configure an interface and set the load sharing of per-packet mode (By default, it is
per-destination).
2. Enable and configure OSPF
3. Configure OSPF load sharing on R1
Configuration Commands
The configuration of R1:
R1(config)#interface gei-0/2/1/1
R1(config-if)#ip address 101.2.1.100 255.255.255.0
R1(config-if)#exit
R1(config)#interface gei-0/2/1/2
R1(config-if)#ip address 102.2.1.100 255.255.255.0
R1(config-if)#exit
R1(config)#router ospf 1
R1(config-ospfv2)#network 101.2.1.0 0.0.0.255 area 0
R1(config-ospfv2)#network 102.2.1.0 0.0.0.255 area 0
R1(config-ospfv2)# maximum-paths 2
R1(config)#interface gei-0/2/1/1
R1(config-if)#ip load-sharing per-packet
R1(config)#interface gei-0/2/1/2
R1(config-if)#ip load-sharing per-packet
4-53
Configuration Verification
Use the show command to check the configuration result, as shown below.
R1#show ip forwarding route ospf
IPv4 Routing Table:
Dest Gw Interface Owner Pri Metric
1.1.1.200/32 101.2.1.200 gei-0/2/1/1 OSPF 110 2
1.1.1.200/32 102.2.1.200 gei-0/2/1/2 OSPF 110 2
4-54
4-55
4-56
4-57
4-58
3. Network type on interfaces should be consistent. It is not allowed that the type on one
interface is broadcast and the type on the other interface is point to pint.
4. Addresses should not be conflicted. Otherwise there will be route calculation error.
5. Interface cost should not be 65535. Otherwise the interface will not participate in route
calculation.
If the fault cannot be solved according to the above steps, please ask for technical support.
If there are not multiple route entities in the routing table, check whether the costs of the
links are the same. If there is still any problem, please ask for technical support.
4-59
1. Check whether there are multiple route entities that can share the traffic in the routing
table, as shown below.
ZXR10#show ip forwarding route ospf
IPv4 Routing Table:
Dest Gw Interface Owner Pri Metric
1.1.1.200/32 101.2.1.200 gei-0/2/1/1 OSPF 110 2
1.1.1.200/32 102.2.1.200 gei-0/2/1/2 OSPF 110 2
2. Check whether load sharing is enabled, that is, whether the maximum-paths command
is configured.
ZXR10#show running-config ospf
4-60
router ospf 1
maximum-paths 2
network 101.2.1.0 0.0.0.255 area 0.0.0.0
network 102.2.1.0 0.0.0.255 area 0.0.0.0
!
3. Check whether the link costs are the same.
4. Check that the load sharing mode on the interface is per-destination or per-packet.
It is necessary to check the load sharing mode on each interface. As long as there
is one interface on which the load sharing mode is per-destination, the load sharing
mode is per-destination.
ZXR10#show running-config-interface gei-0/2/1/1
!
interface gei-0/2/1/1
index 2
ip address 101.2.1.100 255.255.255.0
ip load-sharing per-packet
!
5. If the load sharing mode is per-destination, check whether the attributes in the
quintuple group are regular.
If the fault cannot be solved according to the steps above, please ask for technical support.
4-61
4-62
l L1/L2 router
The router belonging to L1 and L2 at the same time is called L1/L2 router. Every
area has a L1/L2 router at least, which connects the area to backbone network. A
5-1
L1/L2 router maintains two LSDBs, L1 LSDB is responsible for intra-area routes and
L2 LSDB is responsible for inter-area routes.
IS-IS area division and router types are shown in Figure 5-1.
l L1 router
A L1 router exists in non-backbone area, and it only interacts routing information with
other L1 and L1/L2 routers in area.
l L2 router
A L2 router exists in backbone area, and it interacts routing information with other L2
and L1/L2 routers.
l L1/L2 router
A L1/L2 router exists in non-backbone area, and it interacts routing information
between its area and backbone area.
The routers of an area only maintain the link state database in their area. In this way, the
burden of routers themselves can be saved.
The concept of NBMA does not applies to IS-IS. Therefore, some NBMA networks, such
as frame delay, ATM and X.25 and so on are considered to be point-to-point networks by
using sub-interface division.
5-2
5-3
Since the IS-IS protocol is based on CLNS (not IP), IS-IS uses Protocol Data Unit (PDU)
defined by ISO to implement communication between routers. The types of PDUs used in
IS-IS protocol are as follows:
l Hello PDU
l Link state PDU
l Sequence Number PDU (SNP)
Where, Hello PDU is similar to the HELLO packet in OSPF protocol, which is responsible
to form adjacency between routers, discovers new neighbors and detects the leaving of
any neighbors.
IS-IS routers uses LSA to exchange routing information, set up and maintain link state
database. A LSP indicates the important information related to a router, including the area
and the connected network. SNP is used to ensure that LSPs can be transmitted reliably.
SNP contains the summary information of every LSP on the network. When a router
receives a SNP, it compares the SNP with its link state database. If the router loses a
LSP existing in the SNP, it will send a SNP in multicast mode to ask for the required LSP
from other routers on the network.
By using LSPs in conjunction with SNPs, IS-IS protocol can interact routes reliably on a
large network.
Likewise, IS-IS protocol also uses the Dijkstra SPF algorithm to calculate routes. Based
on the link state database, it uses the SPF algorithm to calculate the optimal route and
then adds the route to IP routing table.
1 ZXR10(config)#router isis < process-id> [ vrf < vrf-name> ] This enables IS-IS route protocol
and enters IS-IS route configuration
mode.
5-4
3 ZXR10(config-isis)#system-id < system-id> [ range < This sets system ID of IS-IS. System
range-number> ] ID is used to identify a router in an
area. It is a hex character string with
6 bytes. Usually, it is a MAC address
of an interface on the router.
To configure IS-IS global parameters on ZXR10 M6000, perform the following steps.
1 ZXR10(config)#router isis < process-id> [ vrf < vrf-name> ] This enables IS-IS and enters IS-IS
route configuration mode.
5-5
6 ZXR10(config-isis)#distance < value > This sets the priority of IS-IS protocol
on local and compares it to those of
other protocols.
The range is 1-255, and the default
value is 115.
5-6
Parameter Description
< narrow | wide > In narrow mode, there are 6 bits to carry metric value. In wide mode,
there are 24 bits to carry metric value, and it supports to bring more
TLV extensions.
When devices are connected and neighborhood is set up, the types
of metric-style are different that causes the topology establishment
is failed.
Parameter Description
on-start-up { 5-86400 | auto | wait-for-bgp } l 5-86400: It is a range for selection. After restarting, the OL bit can
be set in some seconds (5–86400). After some seconds, the OL
bit cannot not set.
l auto: The OL bit cannot be set after the databases are
synchronized.
l wait-for-bgp: The OL bit cannot be set after BGP is synchronized.
suppress { all | external | interlevel} l all: Suppress the redistribution and route leakage between
level–1 and level–2
l external: Suppress the local learning of redistributed routes
l interlevel: Suppress the leakage between routes.
5-7
Parameter Description
metric-type < type> metric type, valuing external or internal. By default, it is internal.
Parameter Description
1 ZXR10(config)#router isis < process-id> [ vrf < vrf-name> ] This enables IS-IS and enters IS-IS
configuration mode.
5-8
ZXR10 (config-isis-if)#hello-interval < interval> [ level-1 | level-2] This configures the time interval for
sending HELLO packets. The unit is
second, the range is 1–65535, and
the default setting is 10 seconds.
The time interval is 3 seconds after
DIS is elected on broadcast link. It
cannot be modified.
When the command is used without
optional parameters, the interval
configuration is effective to both
level-1 and level-2.
ZXR10 (config-isis-if)#hello-multiplier < multiplier> [ level-1 | This configures the time for keeping
level-2] neighborhood.
This time has to be the multiplier of
the time interval for sending HELLO
packets, in range of 3-1000, 3 by
default.
When the command is used without
optional parameters, the multiplier
configuration is effective to both
level-1 and level-2.
ZXR10 (config-isis-if)#lsp-interval < interval> [ level-1 | level-2] This configures the time interval
for transmitting LSPs. The unit is
second, the range is 1–65535, and
the default setting is 2 seconds.
When the command is used without
optional parameters, the interval
configuration is effective to both
level-1 and level-2.
ZXR10 (config-isis-if)#retransmit-interval < interval> [ level-1 | This configures the time interval
level-2] for retransmitting LSPs. The unit
is second, the range is 1-65535, 5
seconds by default.
5-9
ZXR10 (config-isis-if)#priority < priority> [ level-1 | level-2] This configures DIS election priority
on an interface, in range of 0-127,
64 by default. The router with higher
priority is elected to be the DIS.
The configuration only takes effect
on broadcast links.
When the command is used without
optional parameters, the priority
configuration is effective to both
level-1 and level-2.
ZXR10 (config-isis-if)#metric < metric-value> [ level-1 | level-2] This sets the metric value of an
IS-IS interface. The default value
is 10. In wide mode, the range is
0-16777214. In narrow mode, the
range is 0–63.
When the command is used
without optional parameters, the
metric-value configuration is effective
to both level-1 and level-2.
ZXR10 (config-isis-if)#csnp-interval < interval> [ level-1 | level-2] This defines the interval for sending
CSNP packets. The unit is second,
the range is 1-65535. For broadcast
link, the default setting is 10
seconds. For point-to-point network,
the default value is 3600 seconds.
When the command is used without
optional parameters, the interval
configuration is effective to both
level-1 and level-2.
ZXR10 (config-isis-if)#psnp-interval < interval> [ level-1 | level-2] This configures the time interval for
sending PSNP packets on interface.
The unit is second, and the range is
1–65535, and the default setting is
3 seconds.
When the command is used without
optional parameters, the interval
5-10
1 ZXR10(config)#router isis < process-id> [ vrf < vrf-name> ] This enables IS-IS and enters IS-IS
route configuration mode.
5-11
5 ZXR10(config)#router isis < process-id> [ vrf < vrf-name> ] This enables IS-IS and enters IS-IS
route configuration mode.
1 ZXR10(config)#router isis < process-id> [ vrf < vrf-name> ] This enables IS-IS and enters IS-IS
route configuration mode.
5-12
1 ZXR10(config)#router isis < process-id> [ vrf < vrf-name> ] This enables IS-IS and enters IS-IS
route configuration mode.
1 ZXR10(config)#router isis < process-id> [ vrf < vrf-name> ] This enables IS-IS and enters IS-IS
route configuration mode.
Parameter Description
< protocol> Protocol source. It can be connect, static, rip, isis <process-id>, ospf
<process-id> and bgp. It is mandatory. To redistribute isis/ospf routes,
it is necessary to specify the process-id.
< metric-type> The redistributed route brings external or internal metric values.
5-13
1 ZXR10(config)#router isis < process-id> [ vrf < vrf-name> ] This enables IS-IS and enters IS-IS
route configuration mode.
1 ZXR10(config)#router isis < process-id> [ vrf < vrf-name> ] This enables IS-IS and enters IS-IS
route configuration mode.
5-14
1 ZXR10(config)#router isis [ < process-id> ] [ vrf < vrf-name> ] This enters IS-IS route configuration
mode.
5-15
Command Function
ZXR10#show isis adjacency [ up-time] [ level-1 | level-2] [ process-id] This shows the adjacency and displays
the current neighbor status.
ZXR10#show isis circuits [ detail] [ process-id] This displays the information of the
current IS-IS interface.
ZXR10#show isis database [ LSP-ID] [ level-1| level-2] [ verbose] [ detail] This shows the information of IS-IS
[ process-id] neighbor.
ZXR10#show isis topology [ level-1| level-2] [ process-id] [ vrf < vrf-name> ] This shows the numbers of each LSA in
every area and the total number of LSA
in the whole database.
ZXR10#show isis mpls traffic-eng tunnel [ process-id] This shows the use of IS-IS tunnel.
ZXR10#show isis fast-reroute-topology [ level-1| level-2] [ process-id] This views the current IS-IS backup
topology structure.
Parameter descriptions:
5-16
Parameter Description
Interface The name of local interface which sets up neighborhood with the peer
Lev The level at where neighborhood locates. There are three levels,
L1, L2 and L3.
5-17
CirId Interface ID
5-18
ATT/P/OL Whether to connect to external area bit /partition bit /over load bit
5-19
Metric Metric value to destination IS, “--” marks itself, “**” means that the
route cannot be calculated.
SNPA “*ppp*” SNPA address of the next hop, P-P port identifier
An example of the show isis mpls traffic-eng tunnel command output is shown below.
ZXR10(config-router)#show isis mpls traffic-eng tunnel
Process ID: 0
state codes: * the only next hop, ** one of next hops,
-not chosen as next hop
5-20
Process ID: 0
IS-IS ipfrr paths to Level-1 routers
System id Interface Ipfrr interface Ipfrr type metric
1111.1111.1111 fei-0/1/0/2 fei-0/1/0/1 Link 10
IS-IS ipfrr paths to Level-2 routers
System id Interface Ipfrr interface Ipfrr type metric
1111.1111.1111 fei-0/1/0/2 fei-0/1/0/1 Link 10
Ipfrr type IS-IS FRR calculation mode including LFA and down-stream-path
Command Function
ZXR10#debug isis adj-packets[ process-id] This traces and shows the received and
sent HELLO packets.
ZXR10#debug isis snp-packets[ process-id] This traces and shows the SNP packet
and the related events which are
received and sent by IS-IS.
ZXR10#debug isis spf-events[ process-id] This traces and shows the debugging
information of IS-IS routing calculation
events.
ZXR10#debug isis update-packets[ process-id] This traces and shows the debugging
information of IS-IS LSP packet
processing events.
ZXR10#debug isis nsf-event[ process-id] This traces and shows the information
related to IS-IS GR.
5-21
Command Function
ZXR10#debug isis mpls traffic-eng events[ process-id] This traces and shows the debugging
information of IS-IS cspf route
calculation events.
ISIS-Adj: Recv LAN_IIH(1) from IS-IS neighbor information: Receive LAN_IIH (1) packet from interface
2222.2222.2222(fei-0/1/0/1) fei-0/1/0/1 on router 2222.2222.2222
ISIS-Adj: Sending LAN_IIH(1) on IS-IS neighbor information: Send LAN_IIH(1) packet on interface
fei-0/1/0/2 length 50 fei-0/1/0/2. The packet length is 50 bytes.
ISIS-Snp: Rec L1 CSNP from SNP information: Receive L1 CSNP packet from interface fei-0/1/0/2
2222.2222.2222 (fei-0/1/0/2) on router 2222.2222.2222
5-22
Configuration Thought
1. Configure IP addresses of interfaces
2. Configure IS-IS protocol
3. Enable IS-IS protocol on interface
4. Test the configuration result. Make sure that R1 and R2 can set up neighborhood
between each other and calculate topology correctly. Make sure that R1 and R2 can
ping the loopback interface of the peer between each other.
Configuration Commands
Configuration on R1:
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 192.168.2.1 255.255.255.0
R1(config-if)#exit
R1(config)#interface loopback1
R1(config-if)#ip address 192.168.3.1 255.255.255.0
R1(config-if)#exit
R1(config)#router isis
R1(config-isis)#area 01
R1(config-isis)#system-id 00D0.D0C7.5460
R1(config-isis)#interface fei-0/1/0/1
5-23
Configuration on R2:
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 192.168.2.2 255.255.255.0
R2(config-if)#exit
R2(config)#interface loopback1
R2(config-if)#ip address 192.168.6.1 255.255.255.0
R2(config-if)#exit
R2(config)#router isis
R2(config-isis)#area 01
R2(config-isis)#system-id 00D0.D0C7.53E0
R2(config-isis)#interface fei-0/1/0/1
R2(config-isis-if)#ip router isis
R2(config-isis-if)#exit
R2(config-isis)#interface loopback1
R2(config-isis-if)#ip router isis
Configuration Verification
After finishing the configuration above, the following content can be viewed on both R1
and R2. It means that R1 and R2 can set up neighborhood and calculate topology. Ping
the loopback address of the peer on R1 and R2 respectively.
Use the show running-config isis command on R1 to view whether the IS-IS configuration
is correct.
R1(config-isis)#show running-config isis
!
router isis
area 01
system-id 00D0.D0C7.5460
interface fei-0/1/0/1
ip router isis
$
interface loopback1
ip router isis
$
Use the show isis adjacency command on R1 to view whether the neighborhood is normal.
After the neighborhood is set up, UP will be shown under the field of state.
R1(config-isis)#show isis adjacency
Interface System id State Lev Holds SNPA(802.2) Pri MT
fei-0/1/0/1 00D0.D0C7.53E0 UP/UP L1L2 8/7 0030.3144.5566 64/64
5-24
Use the show isis topology command on R1 to view whether the topology can be calculated
correctly. If the topology is calculated correctly, the following entry can be viewed on the
command output. If “– ” is shown under the field of metric, it means the local router. If “**”
is shown under the field of metric, it means inaccessible.
R1(config-isis)#show isis topology
IS-IS paths to Level-1 routers
System id Metric Next-Hop Interface SNPA
00D0.D0C7.53E0 10 00D0.D0C7.53E0 fei-0/1/0/1 0030.3144.5566
00D0.D0C7.5460 --
Use the show isis circuits command on R1 to view the interface information and the DIS
election. The UP means that the interface state is normal. The Down means that the
interface state is abnormal. For abnormal interface state, it is required that inspect the link
state and IP configuration.
R1#ping 192.168.6.1
sending 5,100-byte ICMP echoes to 192.168.6.1,timeout is 2 seconds.
!!!!!
Success rate is 100 percent(5/5),round-trip min/avg/max= 12/22/54 ms.
5-25
R2#ping 192.168.3.1
sending 5,100-byte ICMP echoes to 192.168.3.1,timeout is 2 seconds.
!!!!!
Success rate is 100 percent(5/5),round-trip min/avg/max= 10/20/52 ms.
5-26
Configuration Thought
1. Configure IP addresses of interfaces.
2. Configure IS-IS protocol.
3. Enable IS-IS protocol on interfaces.
4. Enable route aggregation on R1.
5. Configure static route on R4 and redistribute default route.
6. Test the configuration. Make sure that the neighborhood is set up between R1 and R2,
between R2 and R3, and between R3 and R4 already and the topology is calculated
correctly. Ping the peer interface by one of any pair of interfaces successfully.
Configuration Commands
Configuration on R1:
R1(config)#interface fei-0/1/0/3
R1(config-if)#ip address 192.168.15.1 255.255.255.0
R1(config-if)#exit
R1(config)#interface fei-0/1/0/4
R1(config-if)#ip address 192.168.100.1 255.255.255.0
R1(config-if)#exit
R1(config)#interface fei-0/1/0/5
R1(config-if)#ip address 192.168.101.1 255.255.255.0
R1(config-if)#exit
R1(config)#interface fei-0/1/0/6
R1(config-if)#ip address 192.168.102.1 255.255.255.0
R1(config-if)#exit
R1(config)#router isis
R1(config-isis)#area 01
R1(config-isis)#system-id 00D0.D0C7.5460
R1(config-isis)#is-type level-1-2
R1(config-isis)#interface fei-0/1/0/3
R1(config-isis-if)#ip router isis
R1(config-isis-if)#circuit-type level-2
R1(config-isis-if)#exit
R1(config-isis)#interface fei-0/1/0/4
R1(config-isis-if)#ip router isis
R1(config-isis-if)#circuit-type level-2
R1(config-isis-if)#exit
R1(config-isis)#interface fei-0/1/0/5
R1(config-isis-if)#ip router isis
R1(config-isis-if)#circuit-type level-2
R1(config-isis-if)#exit
R1(config-isis)#interface fei-0/1/0/6
R1(config-isis-if)#ip router isis
R1(config-isis-if)#circuit-type level-2
R1(config-isis-if)#exit
5-27
Configuration on R2:
R2(config)#interface fei-0/1/0/3
R2(config-if)#ip address 192.168.15.2 255.255.255.0
R2(config-if)#exit
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 192.168.14.1 255.255.255.0
R2(config-if)#exit
R2(config)#router isis
R2(config-isis)#area 00
R2(config-isis)#system-id 00D0.D0C7.53E0
R2(config-isis)#is-type level-1
R2(config-isis)#interface fei-0/1/0/1
R2(config-isis-if)#ip router isis
R2(config-isis-if)#circuit-type level-2
R2(config-isis-if)#exit
R2(config-isis)#interface fei-0/1/0/3
R2(config-isis-if)#ip router isis
R2(config-isis-if)#circuit-type level-2
R2(config-isis-if)#exit
Configuration on R3:
R3(config)#interface fei-0/1/0/1
R3(config-if)#ip address 192.168.14.2 255.255.255.0
R3(config-if)#exit
R3(config)#interface fei-0/1/0/3
R3(config-if)#ip address 192.168.13.1 255.255.255.0
R3(config-if)#exit
R3(config)#router isis
R3(config-isis)#area 02
R3(config-isis)#system-id EF00.AB00.DF12
R3(config-isis)#is-type level-1-2
R3(config-isis)#interface fei-0/1/0/1
R3(config-isis-if)#ip router isis
R3(config-isis-if)#circuit-type level-2
R3(config-isis-if)#exit
R3(config-isis)#interface fei-0/1/0/3
R3(config-isis-if)#ip router isis
R3(config-isis-if)#circuit-type level-1
R3(config-isis-if)#exit
Configuration on R4:
R4(config)#interface fei-0/1/0/3
R4(config-if)#ip address 192.168.13.2 255.255.255.0
R4(config-if)#exit
5-28
R4(config)#router isis
R4(config-isis)#area 02
R4(config-isis)#system-id 00DE.FD11.AD00
R4(config-isis)#is-type level-1
R4(config-isis)#interface fei-0/1/0/3
R4(config-isis-if)#ip router isis
R4(config-isis-if)# circuit-type level-1
R4(config-isis-if)#exit
R4(config-isis)#exit
R4(config)#ip route 0.0.0.0 0.0.0.0 192.168.13.1
R4(config)#router isis
R4(config-isis)#default-information originate
R4(config-isis)#redistribute static metric 10
R4(config-isis)#end
Configuration Verification
After the configuration above is finished, the following content can be viewed on one of
any pair of devices. It shows that the neighborhood is set up already and the topology is
calculated correctly. The peer interface can be pinged successfully by one end of any pair
of devices.
Use the show ip protocol routing command to view the default static route redistributed by
R4 on R1.
R1(config)#show running-config isis
!
router isis
area 01
system-id 00D0.D0C7.5460
is-type level-1-2
summary-address 192.168.100.0 255.255.252.0
interface fei-0/1/0/3
ip router isis
circuit-type level-2-only
$
interface fei-0/1/0/4
ip router isis
circuit-type level-2-only
$
interface fei-0/1/0/5
ip router isis
circuit-type level-2-only
$
interface fei-0/1/0/6
ip router isis
circuit-type level-2-only
5-29
$
!
R1(config)#show isis adjacency
Interface System id State Lev Holds SNPA(802.2) Pri MT
fei-0/1/0/3 00D0.D0C7.53E0 UP L2 7 0030.3144.5566 64
R1(config)#show isis topology
IS-IS paths to Level-1 routers
System id Metric Next-Hop Interface SNPA
00D0.D0C7.5460 --
5-30
View R3 configuration,
R3(config)#show running-config isis
!
router isis
area 02
system-id EF00.AB00.DF12
is-type LEVEL-1-2
interface fei-0/1/0/1
ip router isis
circuit-type level-2-only
$
interface fei-0/1/0/3
ip router isis
circuit-type level-1
$
!
R3(config)#show isis topology
IS-IS paths to level-1 routers
System Id Metric Next-Hop Interface SNPA
Router --
5-31
View R4 configuration,
R4(config)#show running-config
!
router isis
area 02
system-id 00de.fb11.ad00
is-type LEVEL-1
redistribute static ip metric 10
default-information originate
interface fei-0/1/0/3
ip router isis
circuit-type level-1
!
ip route 0.0.0.0 0.0.0.0 192.168.13.1
R4(config)#show isis topology
IS-IS paths to level-1 routers
System Id Metric Next-Hop Interface SNPA
Router --
5-32
R4#ping 192.168.100.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.100.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max =
192/709/1148 ms
Configuration Thought
1. Establish neighbor relationship on fei-0/1/0/1 of R1 and fei-0/1/0/1 of R2 in Instance
100.
2. Establish neighbor relationship on fei-0/1/0/2 of R1 and fei-0/1/0/2 of R2 in Instance
200.
3. Redistribute direct-connected routes in the instances of R1. Check whether load
sharing is performed through different instances on R2. (Load sharing cannot be
performed, as the route with a smaller instance number of the same prefix has a
higher priority.)
Configuration Commands
Configuration on R1:
5-33
R1(config-isis)#area 10
R1(config-isis)#redistribute connected
R1(config-isis)#interface fei-0/1/0/2
R1(config-isis-if)#ip router isis
R1(config-isis-if)#exit
R1(config-isis)#exit
Configuration on R2:
R2(config)#router isis 100
R2(config-isis)#system-id 2222.0100.0000
R2(config-isis)#area 10
R2(config-isis)#interface fei-0/1/0/1
R2(config-isis-if)#ip router isis
R2(config-isis-if)#exit
R2(config-isis)#exit
R2(config)#router isis 200
R2(config-isis)#system-id 2222.0200.0000
R2(config-isis)#area 10
R2(config-isis)#interface fei-0/1/0/2
R2(config-isis-if)#ip router isis
R2(config-isis-if)#exit
R2(config-isis)#exit
Configuration Verification
R1#show isis adjacency
Process ID: 100
Interface System id State Lev Holds SNPA(802.2) Pri MT
fei-0/1/0/1 R2 UP/UP L1L2 26/26 0021.8844.5541 64/64
Process ID: 200
Interface System id State Lev Holds SNPA(802.2) Pri MT
fei-0/1/0/2 R2 UP/UP L1L2 25/25 0021.8844.5541 64/64
The result shows that the traffic goes through gei-0/1/0/1, that is, the route with a smaller
instance number is preferred.
R2#show ip forwarding route isis-l2
IPv4 Routing Table:
Dest Gw Interface Owner Pri Metric
1.1.1.12/32 56.3.3.2 fei-0/1/0/1 isis_l2 115 10
88.6.5.5/32 56.3.3.2 fei-0/1/0/1 isis_l2 115 10
5-34
2. The typical network structure of link protection is shown in Figure 5-6. IS-IS neighbor
topology is established on the two links. One of the link has high priority and the other
link has lower priority.
Configuration Thought
1. Configure routing protocols.
2. On the nodes forming FRR relationship, there are more than two next hops reachable
to the same destination, and the routes to the same destination have different costs.
3. Enable FRR function in related routing protocol on corresponding devices.
Configuration Commands
The detailed configuration is described below.
1. For the FRR configuration of node protection type, please refer to the “BGP FRR
Configuration Example” topic.
2. Configuration of FRR link protection
Take IS-IS protocol in Figure 5-6 as an example.
Configuration of R1:
R1(config)#router isis
5-35
R1(config-isis)#area 01
R1(config-isis)#system-id 00D0.D0C7.5460
R1(config-isis)#fast-reroute enable
R1(config-isis)#interface gei-0/2/1/1
R1(config-isis-if)#ip router isis
R1(config-isis-if)#exit
R1(config-isis)#interface gei-0/2/1/2
R1(config-isis-if)#ip router isis
R1(config-isis-if)#metric 20
Configuration of R2:
R2(config)#router isis
R2(config-isis)#area 01
R2(config-isis)#system-id 00D0.D0C7.6788
R2(config-isis)#interface gei-0/2/1/1
R2(config-isis-if)#ip router isis
R2(config-isis-if)#exit
R2(config-isis)#interface gei-0/2/1/2
R2(config-isis-if)#ip router isis
Configuration Verification
Use the show ip forwarding backup route command to check whether the FRR
configuration takes effect.
5-36
5-37
5-38
5-39
5-40
successfully. If all physical interfaces are in up state but the ping is still failed, inspect
and change cables.
2. Use the show isis circuits command to view the conditions and states of IS-IS
interfaces. Inspect whether the interfaces are in UP state. If the interfaces are in
down state, inspect the link state.
3. Use the show isis adjacency command to view the condition of neighborhood. If the
neighborhood is in up state, it means that the neighborhood is set up well. If the neigh-
borhood is in init state, it means that the packets are received from the peer already.
The link is in init state of 10 seconds when it just set up. The time of 10 seconds is to
wait to receive packets from the peer. If the link is always in init state, inspect whether
the peer has authentication configuration.
4. Inspect whether the topology is calculated correctly. Use the show isis topology
command to view the topology calculation. If the topology is failed to calculate,
inspect whether the metric-types are consistent in a pair of peers, inspect whether
the authentication modes are the same in route mode.
5-41
5-42
2. Use the show running-config isis command to view whether IS-IS protocol is enabled.
3. Inspect whether the system-ID is unique. Two routers with the same system-ID cannot
establish neighborhood.
4. Inspect whether the configuration of area is correct. When IS-type is lvel-1, the
areas have to the same in the interconnected devices. Otherwise, level-1 neighbor
relationship cannot be established.
5. Inspect whether the IS-type is correct. The range of IS-type needs to have an
intersection with the range of circuit-type on interface. Otherwise, the neighbor
relationship cannot be established. Inspect whether ip router isis is enabled on the
direct-connected interfaces.
6. Inspect whether the configuration of circuit-type is correct on interface.
7. Inspect whether the authentication information and modes are consistent on two ends.
8. Inspect whether the configurations of metric-type are consistent on two ends in route
mode.
9. Inspect whether the configuration of authentication are consistent on two ends in route
mode.
If the fault cannot be solved according to the steps above, please ask for technical support.
5-43
If the costs of the links meets the algorithm requirement, check whether the fast-reroute di
sable command or the fast-reroute block command is enabled on the backup link interface.
Use the show isis fast-reroute-topology [ level-1 | level-2] command. If the Ipfrr type
(that is, the protection) is Link or Node and there is no ECMP mark in the output
result, the primary/backup relationship is formed.
2. If the primary/backup links are not formed, check whether the link costs meet the
algorithm requirement.
3. Check whether the backup link is forbidden to back up.
If the fault cannot be solved according to the steps above, please ask for technical support.
5-44
6-1
The router sends BGP update messages related to the destination network to its peer
router. The BGP updating messages contain the information related to BGP metric (called
path attribute). By means of BGP attributes, the special route can be described in detail.
In this way, user can select and filter routes. The path attributes have the following four
independent types,
1. Well-known mandatory attribute: This kind of attributes has to be contained by route
description.
l AS-path
l Next-hop
l Origin
2. Well-known discretionary attribute: The kind of attributes is not necessary contained
by route description.
l Local preference
l Atomic aggregate
3. Optional transitive attributes: This kind of attributes does not require that all BGP
operations support it. However, if it is supported, it can be transmitted to its BGP
neighbor. while, if it is not supported by the current router, it will be transmitted to
other BGP routers continuously.
l Aggregator
l Community
4. Optional nontransitive attribute: This kind of attributes shows that the routers which
do not support the attribute need to delete it.
l Multi-Exit Discriminator (MED)
The kinds of BGP attributes can be expanded into 256 but not all attributes are used
together. The attributes can be used selectively and flexibly.
l UPDATE
It sends BGP route updating packets. The message is sent only once route is updated.
l KEEPALIVE
It confirms the peer status. The default sending interval is 30 seconds, and the
Hold-time is 90 seconds by default. Once the neighbor receives the KEEPALIVE
packet, the Hold-time timer will be reset. If the hold-time expires, then consider that
the neighbor is in abnormal status, and disconnect the BGP connection with neighbor.
l NOTIFICATION
6-2
It is used to notify error. The router sends NOTIFICATION packet because of errors,
such as the TCP connection is failed with neighbor, failed authentication and routing
loop and so on. After sending NOTIFICATION packet, BGP connection will be
disabled.
BGP working flow is listed as follows,
1. Idle State
It is the initial state. The BGP starts initialization after the protocol is activated. It resets
the timer, launches the first TCP connection and enters state 2.
2. Connect state
The BGP starts TCP connection and waits for the message of TCP successful
connection. If the connection is successful, then the BGP enters OpenSent state.
Otherwise, the BGP enters Active state.
3. Active state: The BGP always tries to establish TCP connection. If the connection
timer times out, then the BGP returns to Connect state. If TCP connection is
successful, then BGP enters OpenSent state.
4. OpenSent state
TCP connection is established already. The BGP sends the first OPEN packet and
waits for the reply from the peer. BGP examines the reply packet. If the BGP finds
error, it will send a NOTIFICATION packet and return to Idle state. If there is no error
in the reply packet, BGP will send a KEEPALIVE packet. KEEKALIVE timer starts
timing. The BGP enters into OpenConfirm state.
5. OpenConfirm state
The BGP waits for KEEPALIVE packet and resets the KEEPALIVE timer. When the
BGP receives a KEEPALIVE packet, it enters Established state.
6. Established state
Neighborhood is set up already. Router exchanges Update packet with its neighbor,
and meanwhile, the KEEPALIVE timer is reset.
In initial, the exchanging of routing information includes all BGP routes, that is, all entries
in BGP routing table will be exchanged. After the initial exchanging is finished, the
incremental and burst routing update is launched only when the route entries are changed
or been unavailable. The meaning of the so-called incremental is that not the entity BGP
table will be exchanged but only update the changed route entries. The burst means
that update routes only when the routing table is changed rather than periodically route
updating.
When a router sends route information to its neighbor, it will save the route entries sent
to neighbor at local. When the router receives a route updating packet, it will compare
updating packet with the locally saved routing entries. If this entry is not sent before, then
the router will send it to its neighbor. If the entry is sent already and better, the router will
send the entry to its neighbor and update its locally saved routing entries. Compared with
6-3
the conventional periodical routing table updating, this updating mode saves the bandwidth
a lot. Route updating is achieved by UPDATE packets.
During the process above, if the BGP connection fails to be established because of any
connection failure, authentication failure and route loopback and so on, the router will send
NOTIFICATION packet to its peer that close BGP session will be closed. Later, the router
enters Idle state.
BGP working process is shown in Figure 6-1.
6-4
mode. Otherwise, if the two routers belong to different ASs, then they use EBGP as their
connection mode.
As shown in Figure 6-2, R1 and R2 are EBGP neighbors, R2 and R3 are IBGP neighbors.
6-5
1 ZXR10(config)#router bgp < as-number> This starts BGP routing process and
specifies the AS number of router.
< as-number> is the AS system ID
of router, the range is 1–65535.
1–64511 is the global common AS
number. 64512–65535 is used by
private networks. Current version
also supports 32–bit AS which is in
the range of 1-4294967295.
4 ZXR10(config-bgp)#neighbor [ < ipv4-address> | < peer-group-name> This specifies local loopback address
] update-source < interface-name> as source IP address to set up TCP
connection.
Parameter Description
< number> The AS system that the neighbor belongs to. The range is 1–65535
Parameter Description
< number> The AS system that the neighbor belongs to. The range of a 2–byte
AS number is 1–65535, and the range of a 4–byte AS number is
1-4294967295.
Parameter Description
6-6
Parameter Description
Configuration on R1:
R1#config terminal
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 129.213.1.1 255.255.255.252
R1(config-if)#exit
R1(config)#router bgp 65000
R1(config-bgp)#neighbor 129.213.1.2 remote-as 65001
R1(config-bgp)#exit
Configuration on R2:
R2#config terminal
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 129.213.1.2 255.255.255.252
R2(config-if)#exit
R2(config)#router bgp 65001
R2(config-bgp)#neighbor 129.213.1.1 remote-as 65000
R2(config-bgp)#exit
6-7
To view the established BGP neighborhood, use the show ip bgp neighbor command on
R1.
R1#show ip bgp neighbor
BGP neighbor is 129.213.1.2, remote AS 65001, external link
BGP version 4, remote router ID 129.213.1.2
BGP state = Established, up for 00:04:21
hold time is 90 seconds, keepalive interval is 30 seconds
……
Connections established 1
Local host: 129.213.1.1, Local port: 179
Foreign host: 129.213.1.2, Foreign port: 1024
The IP address of BGP neighbor is 129.213.1.2. The neighbor belongs to AS65001. EBGP
connection is set up already. The router-ID of neighbor is 129.213.1.2 and the state is
Established. The session is set up 4 minutes 21 seconds.
To view the established BGP neighborhood, use the show ip bgp neighbor command on
R2.
R2#show ip bgp neighbor
BGP neighbor is 129.213.1.1, remote AS 65000, external link
BGP version 4, remote router ID 129.213.1.1
BGP state = Established, up for 00:00:27
hold time is 90 seconds, keepalive interval is 30 seconds
……
Connections established 1
Local host: 129.213.1.2, Local port: 1024
Foreign host: 129.213.1.1, Foreign port: 179
6-8
Configuration on R1:
R1#config terminal
R1(config)# interface fei-0/1/0/1
R1(config-if)#ip address 192.168.1.1 255.255.255.252
R1(config-if)#exit
R1(config)#interface Loopback1
R1(config-if)#ip address 1.1.1.1 255.255.255.255
R1(config-if)#exit
R1(config)#router bgp 65000
R1(config-bgp)#neighbor 1.1.1.2 remote-as 65001
R1(config-bgp)#neighbor 1.1.1.2 ebgp-multihop ttl 5
R1(config-bgp)#neighbor 1.1.1.2 update-source Loopback1
R1(config-bgp)#exit
R1(config)#ip route 1.1.1.2 255.255.255.255 192.168.1.2
Configuration on R2:
R2#config terminal
R2(config)# interface fei-0/1/0/1
R21(config-if)#ip address 192.168.1.2 255.255.255.252
R2(config-if)#exit
R2(config)#interface Loopback1
R2(config-if)#ip address 1.1.1.2 255.255.255.255
R2(config-if)#exit
R2(config)#router bgp 65001
6-9
Note that if the number of hops is not designated behind ebgp-mulitihop, the system will
set TTL value as 8 by default.
To view the established BGP neighborhood, use the show ip bgp neighbor command on
R1.
R1 establishes EBGP connection with the router 1.1.1.2 belonging to AS 65000 already.
To view the established BGP neighborhood, use the show ip bgp neighbor command on
R2.
R2#show ip bgp neighbor
BGP neighbor is 1.1.1.1, remote AS 65000, external link
BGP version 4, remote router ID 1.1.1.1
BGP state = Established, up for 00:02:03
hold time is 90 seconds, keepalive interval is 30 seconds
……
Connections established 1
Local host: 1.1.1.2, Local port: 1026
Foreign host: 1.1.1.1, Foreign port: 179
R2 establishes EBGP connection with the router 1.1.1.1 belonging to AS 65000 already.
IBGP is used to exchange BGP update packets in an AS and maintain the internal
connectivity.
BGP rules that an IBGP router cannot send the routes received from another IBGP router
to the third IBGP router. This is the rule of Split-horizon. When a router receives a update
packet through EBGP, it will process and send the packet to all IGBP routers and EBGP
peers, but when a router receives update packet through IBGP, it will process and send
6-10
the packet through EBGP rather than send it to IBGP neighbors. Therefore, to keep the
connectivity of the BGP, BGP routers have to set up a full meshed network through IBGP
session.
3 ZXR10(config-bgp)#neighbor [ < ipv4-address> | < peer-group-name> (Optional) This specifies the local
] update-source < interface-name> loopback address as the source
IP address to establish a TCP
connection. This command is used
when the loopback address is used
to establish an EBGP connection.
4 ZXR10(config-bgp)#neighbor [ < ipv4-address> | < peer-group-name> This makes the interface address of
] next-hop-self the router itself as the next hop for
advertising routes by constraint.
Parameter Description
< number> The AS that the neighbor belongs to. The range of a 2–byte AS
number is 1–65535, and the range of a 4–byte AS number is
1-4294967295.
Parameter Description
6-11
Parameter Description
6-12
Configuration on R2:
R2#config terminal
R2(config)# interface fei-0/1/0/1
R2(config-if)#ip address 192.168.2.1 255.255.255.252
R2(config-if)#exit
R2(config)#interface Loopback1
R2(config-if)#ip address 1.1.1.2 255.255.255.255
R2(config-if)#exit
R2(config)#router bgp 65001
R2(config-bgp)#neighbor 1.1.1.3 remote-as 65001
R2(config-bgp)#neighbor 1.1.1.3 update-source Loopback1
R2(config-bgp)#neighbor 1.1.1.3 next-hop-self
R2(config-bgp)#no synchronization
R2(config-bgp)#exit
R2(config)#router ospf 1
R2(config-ospfv2)#network 192.168.2.0 0.0.0.3 area 0
R2(config-ospfv2)#network 1.1.1.2 0.0.0.0 area 0
R2(config-ospfv2)#exit
Configuration on R3:
R3#config terminal
R3(config)# interface fei-0/1/0/1
R3(config-if)#ip address 192.168.2.2 255.255.255.252
R3(config-if)#exit
R3(config)#interface Loopback1
R3(config-if)#ip address 1.1.1.3 255.255.255.255
6-13
R3(config-if)#exit
R3(config)#router bgp 65001
R3(config-bgp)#neighbor 1.1.1.2 remote-as 65001
R3(config-bgp)#neighbor 1.1.1.2 update-source Loopback1
R3(config-bgp)#neighbor 1.1.1.2 next-hop-self
R3(config-bgp)#no synchronization
R3(config-bgp)#exit
R3(config)#router ospf 1
R3(config-ospfv2)#network 192.168.2.0 0.0.0.3 area 0
R3(config-ospfv2)#network 1.1.1.3 0.0.0.0 area 0
R3(config-ospfv2)#exit
Use the show ip bgp neighbor command to view the established BGP neighborhood on R2.
R2#show ip bgp neighbor
BGP neighbor is 1.1.1.3, remote AS 65001, internal link
BGP version 4, remote router ID 1.1.1.3
BGP state = Established, up for 00:01:25
hold time is 90 seconds, keepalive interval is 30 seconds
……
Connections established 1
last error code is 6
Local host: 1.1.1.2, Local port: 179
Foreign host: 1.1.1.3, Foreign port: 1096
6-14
2 ZXR10(config-bgp)#neighbor < ip-address> password [ < string 1> | This configures the BGP neighbor
encrypt < string 2> ] authentication, including plain text
display and cryptograph display.
Parameter Description
< string 1> Character string password, in case sensitive, the length is 3–80
characters.
Example
The following example shows how to configure BGP neighbor password authentication
and encrypt the password.
ZXR10(config)#router bgp 100
ZXR10(config-bgp)#neighbor 192.168.0.2 remote-as 100
ZXR10(config-bgp)#neighbor 192.168.0.2 password 789
ZXR10(config-bgp)#neighbor 192.168.0.2 password encrypt 123
ZXR10(config-bgp)#show running-config bgp
router bgp 100
neighbor 192.168.0.2 password encrypt u5pd4oR1YGR1E+My5y4ec1dbC7
eZf4gsX0qhVYXcb6KV1CMnm8VFlX9dcceOjgUYrxPGh3Gy7Rl8VxSlqtHcujwZ5qzj
LbVOkiKWz41nHPk=
!
Command Function
ZXR10(config-bgp)#reset ip bgp [ vrf < vrf-name> ] [ < ipv4-address> | This restarts BGP instance, a peer or
< peer-group-name> ] a pair of peers.
Parameter descriptions:
Parameter Description
6-15
Parameter Description
6-16
For example, use the network 18.0.0.0 255.0.0.0 command in BGP. The network segments
18.0.0.0/8, 18.1.0.0/16 and 18.2.0.0/24 are added to BGP routing table. If these network
segments and subnetworks do not exist in routing table, then no route is injected to BGP
routing table. In order to cooperate with BGP route advertisement, it is required that
configure some static routes pointing to loopback address on router.
It is notable that not all routes injected to BGP routing table can be advertised. It relates
to BGP route filtering or routing policy.
In BGP, use the network command to advertise known network to router. The known
network can be learned by direct-connected route, static route and dynamic route. The
usage of the network command in BGP is different to that in IGP.
Configuration on R2:
6-17
R2#config terminal
R2(config)#interface fei-0/1/0/1
R2(config-if)#ip address 192.168.2.1 255.255.255.252
R2(config-if)#exit
R2(config)#router bgp 65001
R2(config-bgp)#neighbor 192.168.2.2 remote-as 65000
R2(config-bgp)#network 18.0.0.0 255.255.255.0
R2(config-bgp)#exit
R2(config)#router ospf 1
R2(config-ospfv2)#network 18.0.0.0 0.255.255.255 area 0
R2(config-ospfv2)#exit
Configuration on R1:
R1#config terminal
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 192.168.2.2 255.255.255.252
R1(config-if)#exit
R1(config)#router bgp 65000
R1(config-bgp)#neighbor 192.168.2.1 remote-as 65001
R1(config-bgp)#exit
Use the show ip bgp route command to view BGP routing table on R1.
R1#show ip bgp route
Status codes: *-valid, >-best, i-internal,s-stale
Origin codes: i-IGP, e-EGP, ?-incomplete
Note:
l The symbol * indicates the route is available.
l The symbol > indicates the route is the optimized choice.
l The symbol i indicates the route is a IBGP route.
l The route without “i” indicates this is a EBGP route or local route.
l The address under the entry of Next-hop is the next-hop address of BGP route. If the
address is represented as full zero, that means this route is generated by router itself.
l The value under the Local-Pre is the priority level of route which is learned by BGP.
The default value is 100.
l The field Path shows the origin of this route. Three types: IGP, EGP and incomplete.
The example above shows that the network segment 18.0.0.0/8 exists in BGP routing table
already. The next hop address is the interface 192.168.2.1 of R2.
6-18
2 ZXR10(config-bgp)#redistribute < protocol> [ metric < metric-value> This redistributes the routes learned
] [ route-map < map-tag> ] from other routing protocol to BGP
routing table.
Parameter descriptions:
Parameter Description
< protocol> The name of other protocols, connected, static and rip, ospf-int and
ospf-ext, isis-1, isis-2 and isis–1–2
< metric-value> Metric value of the redistributed routes. Use default value if it is not
specified. The range is 0-4294967295.
< map-tag> The name of route mapping of the redistributed route, the length is
1-32 characters.
6-19
Configuration on R2:
R2#config terminal
R2(config)# interface fei-0/1/0/1
R2(config-if)#ip address 192.168.2.1 255.255.255.252
R2(config-if)#exit
R2(config)#router ospf 1
R2(config-ospfv2)#network 18.0.0.0 0.0.0.255 area 0
R2(config)#exit
R2(config)#router bgp 65001
R2(config-bgp)#neighbor 192.168.2.2 remote-as 65000
R2(config-bgp)#redistribute ospf-int
R2(config-bgp)#redistribute connected
R2(config)#exit
Use the show ip bgp route command to view BGP routing table of R1.
R1#show ip bgp route
Status codes: *-valid, >-best, i-internal,s-stale
Origin codes: i-IGP, e-EGP, ?-incomplete
Add the OSPF external route to R2 and set the metric value as 5.
R2#config terminal
6-20
BGP protocol aggregates the learnt routes to a route for advertisement. Thus, route entries
can be reduced a lot in routing table.
Parameter descriptions:
Parameter Description
< count> The number of sub-networks, the range is 0–255, and the default
value is 1.
summary-only If this keyword is configured, the router only advertises the aggregation
route to BGP neighbors. The subnet routes aggregated are not
strict According to RFC1771, only the routes which the attributes of MED
advertised.
and NEXT_HOP are the same respecivetily can be aggregated.
If the command is used without strict, do not consider MED and
NEXT_HOP attributes.
6-21
Configuration on R1:
R1(config)#interface fei-0/1/0/1
R1(config-if)#ip address 2.2.2.2 255.255.255.0
R1(config-if)#exit
R1(config)#router bgp 100
R1(config-bgp)#neighbor 2.2.2.1 remote-as 300
R1(config-bgp)#aggregate-address 192.168.0.0 255.255.252.0 summary-only
R1(config-bgp)#redistribute ospf-int
R1(config-bgp)#redistribute connected
R1(config-bgp)#exit
R1(config)#router ospf 1
R1(config-ospfv2)#network 192.168.3.0 0.255.255.255 area 0
R1(config-ospfv2)#network 10.1.1.0 0.0.0.3 area 0
R1(config-ospfv2)#exit
6-22
only. If the command is used without the summary-only keyword, R2 will advertise the
aggregated route and the detailed routes.
Use the show ip bgp route command on R2 to view the routing table.
R2#show ip bgp route
Status codes: *valid, >best, i-internal
Origin codes: i-IGP, e-EGP, ?-incomplete
Dest NextHop Metric LocPrf RtPrf Path
*>192.168.0.0/22 2.2.2.2 20 100 i
After the aggregation, there is only one route in BGP routing table of R2 belonging to
AS300. It reduces the size of routing table.
If the command is used without the summary-only keyword, R2 will advertise the detailed
routes with the aggregated route.
In BGP routing table, there are four routes 192.168.0.0/24, 192.168.1.0/24 and
192.168.2.0/24, 192.168.3.0/24 except the aggregated route 192.168.0.0/22.
The count < count> parameter indicates the number of subnetworks which are waiting to
implement aggregation. The <count> parameter ranges from 0 to 255 and the default
value is 1, which means the number of subnetworks has to exist in IGP. If the parameter
is 0, that means advertise the route 192.168.0.0/22 when any subnetwork of 192.168.0.0
255.255.252.0 appears in IGP routes. If the parameter is 1 or other value, the following
command is required using to specify the related subnetwork segment.
aggregate-address < ip-address> < net-mask> subnet < subnet-address> < subnet-mask>
The above command means that the routing information can be aggregated and advertised
only when the specified subnetwork routing information appears in IGP routing table and
the route number satisfies the defined count number.
6-23
For that moment, as long as these three routes 192.168.1.0/24, 192.168.2.0/24 and
192.168.3.0/24 are normal, R2 will send an aggregated route 192.168.0.0/22 to R1 no
matter whether 192.168.0.0/22 normal or not. However, if any one of these three routes
is abnormal, R2 will not advertise the aggregated route 192.168.0.0/22.
6-24
6-25
l No.1: ORIGIN
Route origin, that is the AS that generate this routing information.
l No.2: AS_PATH
AS path, that is the AS group or series which has been passed by route entry.
l No.3: NEXT-HOP
The next hop address. IBGP connection will not change NEXT-HOP sent by EBGP.
l No.4: MULTI_EXIT_DISC
It is used to distinguish many exits to other ASs, which is used by local AS router.
l No.5: LOCAL-PREF
It is transmitted within the local AS, indicating the priority of each path.
l No.6: ATOMIC_AGGREGATOR
l No.7: AGGREGATOR
l No.8: RFC1997 defines another common attribute: COMMUNITY
Here, No.1, 2 and 3 attribute are well-known mandatory attributes. No.5 and 6 are
well-konwn discretionary attributes. No.7 and 8 are optional transitive attributes. No.4
is optional nontransitive attribute. They have different priorities, LOCAL-PREF has the
highest priority, and the second one is AS-PATH and ORIGIN.
For other attributes used by BGP, please refer to RFC documentation.
1 ZXR10(config)#route-map < map-tag> [ permit | deny] [ < This creates a route map.
sequence-number> ]
ZXR10(config-ipv4-acl)#rule < rule-id > { permit | deny} { < This defines an ACL rule.
source> [ < source-wildcard> ] | any}
6-26
ZXR10(config-bgp)#neighbor [ < ipv4-address> | < peer-group-name> This binds a specified ACL to match
] route-map < map-tag> { in | out} BGP routes or modify the route
attributes.
Parameter Description
permit Permits redistribution or policy routing tag if the route map meets the
matching condition
deny Denies redistribution or policy routing tag if the route map meets the
matching condition
Parameter Description
< acl-name> Standard ACL list name, the length is 1–31 characters.
< rule-id > The unique ID of a rule in an ACL, determining the sequence of the
rule in the ACL, in the range of 1–2147483644
Parameter Description
6-27
Configuration on R1:
R1(config)#router bgp 100
R1(config-bgp)#neighbor 182.17.20.1 remote-as 200
R1(config-bgp)#network 172.3.0.0 255.255.0.0
R1(config-bgp)#network 172.5.0.0 255.255.0.0
R1(config-bgp)#network 172.7.0.0 255.255.0.0
R1(config-bgp)#neighbor 182.17.20.1 route-map MAP1 out
R1(config-bgp)#neighbor 182.17.20.1 send-med
R1(config-bgp)#exit
R1(config)#route-map MAP1 permit 10
R1(config-route-map)#match ip address 1
R1(config-route-map)#set metric 5
R1(config-route-map)#exit
R1(config)#ipv4-access-list 1
R1(config-ipv4-acl)#rule 1 permit 172.3.0.0 0.0.255.255
R1(config-ipv4-acl)#exit
When filtering route through route map, the match and set commands are usually used
together with route map. The match command defines the matching standard. The set
command defines the action satisfying matching standard.
Use the neighbor 182.17.20.1 send-med command to send MED attribute with advertising
routes to neighbor 182.17.20.1.
6-28
To view BGP routing table on R2, use the show ip bgp route command.
R2#show ip bgp route
Status codes: *-valid, >-best, i-internal,s-stale
Origin codes: i-IGP, e-EGP, ?-incomplete
The above result shows that R2 learns the route from 172.3.0.0/16 only, and its MED value
is 5.
ZXR10(config-ipv4-acl)#rule < rule-id > { permit | deny} { < This defines a rule of an ACL.
source> [ < source-wildcard> ] | any}
ZXR10(config-bgp)#neighbor [ < ipv4-address> | < peer-group-name> This binds a specified ACL to match
] route-map < map-tag> { in | out} BGP routes or modify the route
attributes.
Parameter Description
6-29
Parameter Description
< acl-name> Standard ACL table name, the length is 1–31 characters
< rule-id > The unique ID of a rule in an ACL, determining the sequence of the
rule in the ACL, in the range of 1–2147483644
Parameter Description
< map-tag> The name of route mapping, the length is 1–31 characters
6-30
The route-map command and ACL are used to prevent R1 from advertising the route with
prefix 192.18.10.0/24 to AS200, that is, this route is filtered on R1. Therefore, R3 cannot
learn the route 192.18.10.0/24.
To view BGP routing table on R3, use the show ip bgp route command.
R3#show ip bgp route
Status codes: *-valid, >-best, i-internal,s-stale
Origin codes: i-IGP, e-EGP, ?-incomplete
6-31
The above result shows R3 locating at AS200 does not learn the route pointing to
192.18.10.0/24.
Parameter Description
< value> The maximum number of routes received by a neighbor, the range is
1–4294967295, and the default value is 4294967295
< threshold-value> Generate an alarm when the number of the received routes reaches
to the threshold value, the unit is %.
drop-routes Drop the routes when the number of the received routes exceeds
the threshold value
< time> The connection will be disconnected when the number of the received
routes exceeds the threshold value, and set up neighborhood after
waiting a specified time. The unit is minute, the range is 1–30000
warning-only Print the alarm when the number of the received routes exceeds the
threshold value
Example
As shown in Figure 6-11, R1 can receive 10 routes advertised by R2 at most, and it will
drop routes if more than 10 routes are received. R2 can receive 20 routes advertised by
R1, and neighborhood will be disconnected and set up again after 10 minutes if more than
20 routes advertised by R1.
6-32
Configuration on R1:
Configuration on R2:
R2(config)#router bgp 200
R2(config-bgp)#neighbor 10.1.1.2 remote-as 100
R2(config-bgp)#neighbor 10.1.1.2 maximum-prefix 20 restart 1
Without the configuration of time for waiting reconnection (use the warning-only keyword),
when R1 advertises more than 20 routes to R2, R2 will display the alarm information only.
Configuration on R2:
BGP uses AS-PATH as the factor of its route update to realize no—loop topology of
Internet. Each route contains a list with all passed AS numbers. When the route is
advertised to its origin AS, AS examines its AS number has been existed in AS sequence,
and it will not accept this route. Meanwhile, AS-PATH will be used for deciding the
optimum route. When multiple routes (their attributes except for AS-PATH are the same)
to the same destination are available, BGP will select a route with the shortest path as the
optimum route according to AS-PATH. Therefore, increasing AS-PATH can affect BGP
route selection.
When all routes of one or multiple AS require filtering, the filter method based on AS-PATH
is usually used.
6-33
2 ZXR10(config)#ip as-path access-list < access-list-number> { permit This defines an ACL related to BGP
| deny} < as-regular-expression> AS_PATH.
3 ZXR10(config)#route-map < map-tag> [ permit | deny] [ < This enters route mapping
sequence-number> ] configuration mode.
ZXR10(config-route-map)#set as-path prepend < as-path-number> [ This modifies BGP route AS path.
< as-path-number> ] as-path-number ranges from 1 to
65535 or 1 to 4294967295.
Parameter Description
< map-tag> The name of route mapping, the length is 1-31 characters.
Parameter Description
6-34
By means of routing policy, AS_PATH is configured on the advertised route. Thus, the
route from AS 500 to AS 100 is changed.
To view BGP routing table on a router in AS500, use the show ip bgp route command.
6-35
AS 500 realizes that there are 6 ASs passing by the route from AS 400 to AS 100, and
3 ASs passing by the route if it is from AS 300 to AS 100. Therefore, BGP will select the
routing that passes the less ASs if other priorities are the default settings. That is, the
routing that is from AS 300 to AS 100 satisfies the configuration requirement.
ZXR10(config-ipv4-acl)#rule < rule-id > { permit | deny} { < This defines a rule of an ACL.
source> [ < source-wildcard> ] | any}
3 ZXR10(config)#route-map < map-tag> [ permit | deny] [ < This enters route mapping
sequence-number> ] configuration mode.
ZXR10(config-route-map)#set local-preference < value> This specifies priority value for AS.
0–4294967295, and the default
value is 100.
6-36
Parameter Description
< map-tag> The name of route mapping, the length is 1–31 characters.
Parameter Description
< rule-id > The unique ID of a rule in an ACL, determining the sequence of the
rule in the ACL, in the range of 1–2147483644
6-37
Configuration on R1:
R1(config)#router bgp 600
R1(config-bgp)#no synchronization
R1(config-bgp)#neighbor 172.16.1.2 remote-as 300
R1(config-bgp)#neighbor 172.16.1.2 activate
R1(config-bgp)#neighbor 192.168.1.9 remote-as 600
R1(config-bgp)#neighbor 192.168.1.9 activate
R1(config-bgp)#neighbor 192.168.1.9 next-hop-self
R1(config-bgp)#neighbor 192.168.1.5 remote-as 600
R1(config-bgp)#neighbor 192.168.1.5 activate
R1(config-bgp)#neighbor 192.168.1.5 next-hop-self
R1(config-bgp)#neighbor 172.16.1.2 route-map Local_Pref in
R1(config-bgp)#exit
R1(config)# ipv4-access-list 1
R1(config-ipv4-acl)#permit any
R1(config-ipv4-acl)#exit
Configuration on R2:
R2(config)#router bgp 600
R2(config-bgp)#no synchronization
R2(config-bgp)#neighbor 172.16.0.2 remote-as 300
R2(config-bgp)#neighbor 172.16.0.2 activate
R2(config-bgp)#neighbor 192.168.1.1 remote-as 600
R2(config-bgp)#neighbor 192.168.1.1 activate
R2(config-bgp)#neighbor 192.168.1.1 next-hop-self
R2(config-bgp)#neighbor 192.168.1.10 remote-as 600
R2(config-bgp)#neighbor 192.168.1.10 activate
R2(config-bgp)#neighbor 192.168.1.10
R2(config-bgp)#neighbor 172.16.0.2 route-map Local_Pref in
R2(config)# ipv4-access-list 1
R2(config-ipv4-acl)#permit any
R2(config-ipv4-acl)#exit
Use the show ip bgp route command to view BGP routing table on R3.
R3#show ip bgp route
6-38
Modify the Local_Pref value of R3 to specify an egress for the service. In this example,
the traffic going to 10.0.0.0/24 of AS300 are forwarded by R1 preferably. Therefore, the
route coming from R1 has higher Local_Pref value.
ZXR10(config-ipv4-acl)#rule < rule-id > { permit | deny} { < This defines the rule of standard
source> [ < source-wildcard> ] | any} ACL.
3 ZXR10(config)#route-map < map-tag> [ permit | deny] [ < This enters route mapping
sequence-number> ] configuration mode.
Parameter Description
< map-tag> The name of route mapping, the length is 1–31 characters
6-39
Parameter Description
< rule-id > The unique ID of a rule in an ACL, determining the sequence of the
rule in the ACL, in the range of 1–2147483644
Parameter Description
6-40
Configuration on R2:
R2(config)#router bgp 400
R2(config-bgp)#neighbor 192.168.1.1 remote-as 100
R2(config-bgp)#neighbor 192.168.1.1 activate
R2(config-bgp)#neighbor 192.168.2.1 remote-as 100
R2(config-bgp)#neighbor 192.168.2.1 activate
R2(config-bgp)#exit
To view BGP routing table on R2, use the show ip bgp route command.
R2(config)#show ip bgp route
Status codes: *valid, >best, i-internal
Origin codes: i-IGP, e-EGP, ?-incomplete
6-41
By means of MED modification, R2 selects the link 1 (MED value is 50 smaller than that
of link 2) to route to AS 100 preferably.
To configure BGP community string attributes on ZXR10 M6000, perform the following
steps.
1 ZXR10(config)#route-map < map-tag> [ permit | deny] [ < This creates a route map.
sequence-number> ]
2 ZXR10(config)#ip prefix-list < prefix-list-name> [ seq < seq-number> This configures a list of address
] { permit | deny} < network-num> < len> [ ge < value> | le < value> ] prefixes. It is used to filter the route
advertisements.
3 ZXR10(config)#route-map < map-tag> [ permit | deny] [ < This enters route mapping
sequence-number> ] configuration mode.
ZXR10(config-route-map)#set as-path prepend < as-path-number> [ This modifies BGP route AS path.
< as-path-number> ]
ZXR10(config-route-map)#set dampening < half-life> < reuse> < This sets BGP route dampening.
suppress> < max-suppress-time>
6-42
Parameter Description
< map-tag> The name of route mapping, the length is 1–31 characters.
Parameter Description
seq < seq-number> Sequence number of prefix-list entry. The matching starts from the
one with smaller value. The range is 1–4294967294
< len> Specify the length of mask of IP address, the range is 0–32
ge < value> Specify the matching range of IP address prefixes, and the length
of the prefix of the matched IP address needs to be larger than the
specified value. The value ranges from 0–32
le < value> Specify the matching range of IP address prefixes, and the length of
the prefix of the matched IP address needs to be smaller than the
specified value. The value ranges from 0–32
6-43
Configuration on the router in AS300 (Configurations of port and IGP are omitted):
ZXR10_AS300(config)#router bgp 300
ZXR10_AS300(config-bgp)#network 10.0.4.0 255.255.255.0
ZXR10_AS300(config-bgp)#neighbor 192.168.1.9 remote-as 200
ZXR10_AS300(config-bgp)#neighbor 192.168.1.9 activate
ZXR10_AS300(config-bgp)#neighbor 192.168.1.18 remote-as 600
ZXR10_AS300(config-bgp)#neighbor 192.168.1.18 activate
ZXR10_AS300(config-bgp)#network 10.0.4.0 255.255.255.0
ZXR10_AS300(config-bgp)#neighbor 192.168.1.18 route-map community out
ZXR10_AS300(config-bgp)#neighbor 192.168.1.18 send-community
ZXR10_AS300(config-bgp)#exit
ZXR10_AS300(config)#ip prefix-list AS200 seq 5 permit 10.0.3.0 24
ZXR10_AS300(config)#route-map Community permit 10
ZXR10_AS300(config-route-map)#match ip address prefix-list AS200
ZXR10_AS300(config-route-map)#set community 300:1
ZXR10_AS300(config-route-map)#exit
Configuration on the router in AS400 (configurations of port and IGP are omitted):
ZXR10_AS400(config)#router bgp 300
ZXR10_AS400(config-bgp)#network 10.0.2.0 255.255.255.0
6-44
Use the show ip bgp route command to view BGP routing table on AS600.
ZXR10_AS600(config)# show ip bgp route
Status codes: *valid, >best, i-internal
Origin codes: i-IGP, e-EGP, ?-incomplete
The BGP routes received by AS600 device are marked, the routes coming from AS300
are marked as 300:1, and the routes coming from AS400 are marked as 400:1
6-45
Configuration on the router in AS600 (configurations of port and IGP are omitted):
ZXR10_AS600(config)#router bgp 600
ZXR10_AS600(config-bgp)#neighbor 192.168.1.13 remote-as 400
ZXR10_AS600(config-bgp)#neighbor 192.168.1.13 activate
ZXR10_AS600(config-bgp)#neighbor 192.168.1.13 route-map Local_Pref in
ZXR10_AS600(config-bgp)#neighbor 192.168.1.17 remote-as 300
ZXR10_AS600(config-bgp)#neighbor 192.168.1.173 activate
ZXR10_AS600(config-bgp)#exit
ZXR10_AS600(config)#route-map Local_Pref permit 10
ZXR10_AS600(config-route-map)#match community-list 1
ZXR10_AS600(config-route-map)#set local-preference 200
ZXR10_AS600(config-route-map)#exit
ZXR10_AS600(config)#ip community-list 1 permit 400:1
Use the show ip bgp route command to view BGP routing table of AS600.
ZXR10_AS600(config)# show ip bgp route
Status codes: *valid, >best, i-internal
Origin codes: i-IGP, e-EGP, ?-incomplete
BGP select the route with higher Local_Pref value preferably. In this example, the route
from AS400 to 10.0.3.0/24 is selected.
6-46
for that IBGP neighbors which set up full interconnection with the RR. The clients form a
group. IBGP neighbors of the RR whom do not belong to the group are non-clients.
When a route is received by RR, it will be reflected according to the different peer types.
l If the update message is sent by an EBGP neighbor, then advertise it to all clients and
non-clients.
l If the update message is sent by a non-client, then advertise it to clients.
l If the update message is sent by a RRC, then advertise it to all clients and non-clients
except the originator of this update message.
When multiple RRs are available in an AS, divide many RRs belonging to the same AS to
a cluster. An AS can have many clusters, and a cluster has one RR at least.
Note that RR is recommended to use only when every router holds more than 100 BGP
sessions in an AS.
To configure BGP RR on ZXR10 M6000, perform the following steps.
2 ZXR10(config-bgp)#bgp cluster-id { < value> | < ip-address> } This configures the cluster ID of a
RR.
By default, router-ID is the cluster ID.
Parameter Description
Parameter Description
6-47
Configuration on R3:
R3(config)#router bgp 600
R3(config-bgp)#no synchronization
R3(config-bgp)#bgp cluster-id 3.3.3.3
R3(config-bgp)#neighbor 192.168.1.2 remote-as 600
R3(config-bgp)#neighbor 192.168.1.2 activate
R3(config-bgp)#neighbor 192.168.1.2 route-reflector-client
R3(config-bgp)#neighbor 192.168.1.6 remote-as 600
R3(config-bgp)#neighbor 192.168.1.6 activate
R3(config-bgp)#neighbor 192.168.1.6 route-reflector-client
6-48
R3(config-bgp)#exit
Use the show ip bgp route command to view BGP routing table on R1.
R1(config)#show ip bgp route
Status codes: *valid, >best, i-internal
Origin codes: i-IGP, e-EGP, ?-incomplete
Use the show ip bgp route command to view BGP routing table on R2.
R2#show ip bgp route
Status codes: *valid, >best, i-internal
Origin codes: i-IGP, e-EGP, ?-incomplete
6-49
2 ZXR10(config-bgp)#bgp confederation identifier < value> This sets confederation ID, the range
is 1-65535.
3 ZXR10(config-bgp)#bgp confederation peers < value> [ < value> ] This configures the AS number of
confederation peer. The range is
1-65535
6-50
Use the show ip bgp route command to view BGP routing table on R2.
R2(config)#show ip bgp route
Status codes: *valid, >best, i-internal
Origin codes: i-IGP, e-EGP, ?-incomplete
Use the show ip bgp route command to view BGP routing table on R4.
R4#show ip bgp route
Status codes: *valid, >best, i-internal
Origin codes: i-IGP, e-EGP, ?-incomplete
The output above shows that there is a route pointing to AS500 on R4.
A larger AS is divided into some smaller ASs, and these samller ASs are connected by
EBGP. Each AS acts as an independent BGP AS to run IBGP.
A complete AS only runs an IGP protocol, and every sub-AS has IGP routing information
of all other sub-ASs.
6-51
in network continually when route flapping occurs, the bandwidth and router processing
resource are used a lot.
The principle of BGP route dampening is that allocate a penalty of 1000 to route
whenever the route flapping occurs. When the penalty reaches to a suppress-limit, the
advertisement of the route will be suppressed. The penalty decreases geometrically
after passing every half-life-time. When the penalty reduces to the reuse-limit, the route
advertisement dampening will be cancelled.
The following values are used by BGP route dampening.
l Half-life-time: Ranging from 1 to 45 minutes (The default value is 15 minutes)
l Reuse-value: Ranging from 1 to 20000 (The default value is 750)
l Suppress-value: Ranging from 1 to 20000 (The default value is 2000)
l Max-suppress-time: Ranging from 1 to 255 (The default value is four times of the
value of half-life-time)
To configure BGP route dampening on ZXR10 M6000, perform the following steps.
2 ZXR10(config-bgp)#bgp dampening [ < half-life> < reuse> < This activates BGP route dampening
suppress> < max-suppress-time> | route-map < map-tag> ] and modifies the factors of route
dampening.
Parameter Description
< half-life> Half-life, the range is 1-45, the default value is 15 and the unit is
minute.
< reuse> Reuse value, the range is 1-20000, and the default value 750
< suppress> Route suppress value, the range is 1-20000, and the default value
is 2000
< max-suppress-time> The maximum suppress time, the range is 1-255, the default value is
60, and the unit is minute
< map-tag> Available route mapping tag, the length is 1-31 characters.
6-52
ZXR10(config-bgp)#exit
Use the show ip bgp protocol command to view the configuration of route dampening on
router.
ZXR10#show ip bgp protocol
BGP router ID is 1.1.1.2, Local as is 1
Hold time is 90 seconds, KeepAlive time is 30 seconds
Default local preference is 100
Default export metric is 0
IGP synchronization is disabled
Default information advertise is disabled
Always compare med is disabled
Fast fallover is enabled
Client-to-client reflection is enabled
Ipv4 unicast is activated
Router target is filtered
Route dampening enabled, halflife-time is 30,
reuse is 500, suppress is 2000, max-suppress-time is 120
Distance : external 20 internal 200
Here, the route dampening mechanism is activated. The half-life is 30 minutes, the reuse
value is 500, and the suppress value is 2000, and the maximum suppress time is 120
minutes.
2 ZXR10(config-bgp)#neighbor < word> peer-group This creates a BGP peer group. The
length of peer group ranges from 1
to 16 characters.
4 ZXR10(config-bgp)#neighbor < ip-address> peer-group < word> This adds a neighbor to BGP peer
group.
6-53
Parameter Description
Parameter Description
Parameter Description
Example
ZXR10(config)#router bgp 100
ZXR10(config-bgp)#neighbor zte peer-group
ZXR10(config-bgp)#neighbor zte remote-as 100
ZXR10(config-bgp)#neighbor 192.168.0.2 peer-group zte
ZXR10(config-bgp)#neighbor 192.168.0.3 peer-group zte
Command Function
ZXR10#show ip bgp route [ network < ip-address> [ mask < net-mask> ] ] This displays the entries in the BGP
routing table.
6-54
Hold time is 90 seconds, KeepAlive time is The hold time is 90 seconds, and the keep-alive time is 30 seconds.
30 seconds
Distance : external 20 internal 200 External administrative distance is 20 and the internal administrative
distance is 200
6-55
0 opens, 0 errs
8 keepalives
0 vpnv4 refreshs, 0 ipv4 refreshs, 0 ipv4 multicast refreshs,
0 ipv6 refreshs, 0 errs
0 notifications, 0 other errs
All sent 10 messages
0 updates, 1 opens, 9 keepalives
0 vpnv4 refreshs, 0 ipv4 refreshs, 0 ipv4 multicast refreshs,
0 ipv6 refreshs, 0 notifications
After last established sent 8 messages
0 updates, 0 opens, 8 keepalives
0 vpnv4 refreshs, 0 ipv4 refreshs, 0 ipv4 multicast refreshs,
0 ipv6 refreshs, 0 notifications
BGP neighbor is 129.213.1.2, remote AS The IP address is the peer address used by TCP connection between
65001, external link a pair of BGP peers. The peer belongs to AS65001, and it uses
EBGP connection.
BGP version 4, remote router ID BGP-4 is used. Router-ID of the peer BGP router is 129.213.1.2.
129.213.1.2
BGP state = Established, up for 00:04:21 The neighbor state is Established. The session is set up for 4 minutes
21 seconds already.
hold time is 90 seconds, keepalive interval The hold time is 90 seconds, and the keepalive time is 30 seconds.
is 30 seconds
Neighbor capabilities: The following content describes The capability of the peer
Route refresh: advertised and received The peer supports route refreshing.
Address family IPv4 Unicast: advertised The peer supports unicast NLRI.
and received
6-56
All received 10 messages 10 messages are received in total, including 1 open message, 9
0 updates, 0 errs keepalive messages. VPNV4 route update message is not received.
1 opens, 0 errs There is no IPv4 route update, Notification message and error
9 keepalives message.
0 vpnv4 refreshs, 0 ipv4 refreshs, 0 ipv4
multicast refreshs, 0 ipv6 refreshs, 0 errs
0 notifications, 0 other errs
After last established received 8 messages 8 messages have been received since the last neighborhood
0 updates, 0 errs establishment. They are keepalive messages.
0 opens, 0 errs
8 keepalives
0 vpnv4 refreshs, 0 ipv4 refreshs, 0 ipv4
multicast refreshs, 0 ipv6 refreshs, 0 errs
0 notifications, 0 other errs
All sent 10 messages 10 messages are sent in total, including 0 update message, 1 open
0 updates, 1 opens, 9 keepalives message and 9 keepalive messages.
0 vpnv4 refreshs, 0 ipv4 refreshs, 0 ipv4
multicast refreshs, 0 ipv6 refreshs, 0
notifications
After last established sent 8 messages 0 8 messages have been sent in total since the last neighborhood
updates, 0 opens, 8 keepalives 0 vpnv4 establishment, including 0 update message, 0 open message and 8
refreshs, 0 ipv4 refreshs, 0 ipv4 multicast keepalive messages.
refreshs, 0 ipv6 refreshs, 0 notifications
For address family: IPv4 Unicast Unicast IPv4 route is described as follow:
All received nlri 0, unnlri 0, 0 accepted NLRI and unnlri messages are not received. The prefix of unicast is
prefixes not received either.
All sent nlri 0, unnlri 0, 0 advertised prefixes NLRI and unnlri message are not sent. A prefix of unicast is
advertised.
Minimum time between advertisement runs The minimum update interval is 30 seconds.
is 30 seconds
Connections established 1 BGP connection with the peer is established once already.
Local host: 129.213.1.1, Local port: 179 Local IP socket, including local IP address and TCP port number
Foreign host: 129.213.1.2, Foreign port: The peer IP socket, including the peer IP address and TCP port
1024 number
6-57
Next-hop The next-hop of BGP route. The next-hop represented as full zero
means that the route is generated by local router itself.
Path Route source, there are three kinds, IGP, EGP and incomplete
6-58
As AS number of neighbor
Command Function
ZXR10#terminal monitor
6-59
INFORM_BGP_ACTIVE_GET_TCB Fail to acquire Transmission Control Block (TCB) for automatic BGP
connection setting up
A complete alarm message contains alarm type, alarm code and alarm additional
information. The alarm code indicates what is the alarm. Background can know what
happens according to the value of alarm code. Every alarm message can bring some
additional information, such as alarm reason. For detailed BGP alarm message, refer to
the related alarm message manual.
6-60
2. The typical network structure of link protection is shown in Figure 6-19. IS-IS neighbor
topology is established on the two links. One of the link has high priority and the other
link has lower priority.
Configuration Thought
1. Configure routing protocols.
2. On the nodes forming FRR relationship, there are more than two next hops reachable
to the same destination, and the routes to the same destination have different costs.
3. Enable FRR function in related routing protocol on corresponding devices.
Configuration Commands
The detailed configuration is described below.
1. Configuration of FRR node protection
Take BGP in Figure 6-18 as an example. First, establish EBGP neighbor relationship
between the routers through real interfaces. Enable FRR function on R1. Set the
routes advertised by R3 that go through the path R1—R2—R3 as the optimal routes.
Configuration of R1:
R1(config)#router bgp 1
R1(config-bgp)#neighbor 172.16.1.2 remote-as 2
R1(config-bgp)#neighbor 172.16.20.2 remote-as 3
R1(config-bgp)#bgp frr
R1(config-bgp)#exit
R1(config)#route-map lt
R1(config-route-map)#set local-preference 200
R1(config-route-map)#exit
R1(config)#router bgp 1
R1(config-bgp)#neighbor 172.16.1.2 route-map lt in
Configuration of R2:
6-61
R2(config)#router bgp 2
R2(config-bgp)#neighbor 172.16.1.1 remote-as 1
R2(config-bgp)#neighbor 183.16.20.2 remote-as 3
R2(config-bgp)#exit
Configuration of R3:
R3(config)#router bgp 3
R3(config-bgp)#neighbor 172.16.20.1 remote-as 1
R3(config-bgp)#neighbor 183.16.20.1 remote-as 2
R3(config-bgp)#exit
2. Configuration of FRR link protection
Take IS-IS protocol in Figure 6-19 as an example. For details, please refer to the “IS-IS
FRR Configuration Example” topic.
Configuration Verification
Use the show ip forwarding backup route command to check whether the FRR
configuration takes effect.
The result of BGP FRR on R1 is shown below.
R1#show ip forwarding backup route
IPv4 Backup Routing Table:
Dest Gw Interface Owner Pri Metric
1.1.1.150/32 172.16.20.2 gei_0/2/1/2 BGP 20 0
R1 1.1.1.2/32
R2 1.1.1.3/32
R3 1.1.1.4/32
R4 1.1.1.1/32
R5 1.1.1.5/32
6-62
1. Set up IBGP connection between R1 and R2; set up EBGP connection between R1
and R4; Set up EBGP connection between R2 and R3.
2. R3 and R5 are interconnected by static route and OSPF.
3. R3 distributes OSPF route to BGP, and configure Metric value of the OSPF route is
122.
4. There are some static routes pointing to 192.168.0.0/24, 192.168.1.0/24,
192.168.2.0/24, 192.168.3.0/24 and 192.168.100.0/24 and 10.1.1.0/24 on R4.
5. R4 distributes its static routes to BGP and sets Metric value as 33. The route of
192.168.100.0/24 requires filtering.
6. Implement route aggregation on R4 and advertise the detailed routes.
7. Make sure that PCs in AS2 can intercommunicate with 20.1.1.0/24 connecting to R5.
8. All routers use the address of Loopback1 as source address for connection, and the
mask of interconnection address is 30 bits.
Configuration Thought
1. Configure static route.
2. Configure IGP (OSPF).
3. Enable BGP.
4. Configure neighbor.
5. Modify source address.
6. Configure route aggregation.
7. Configure multi-hops.
8. Cancel synchronization.
9. Configure route-map to filter the specified route.
10. Modify the Metric value of route to be advertised.
Configuration Commands
Configuration on R1:
R1(config)#interface loopback1
6-63
Configuration on R2:
R2(config)#interface loopback1
R2(config-if)#ip address 1.1.1.3 255.255.255.255
R2(config-if)#exit
R2(config)#interface fei-0/1/1/1
R2(config-if)#ip address 13.1.1.2 255.255.255.252
R2(config-if)#exit
R2(config)#interface fei-0/1/2/1
R2(config-if)#ip address 12.1.1.2 255.255.255.252
R2(config-if)#exit
R2(config)#router bgp 1
R2(config-bgp)#no synchronization
R2(config-bgp)#redistribute connected
R2(config-bgp)#neighbor 1.1.1.2 remote-as 1
R2(config-bgp)#neighbor 1.1.1.2 activate
R2(config-bgp)#neighbor 1.1.1.2 next-hop-self
R2(config-bgp)#neighbor 1.1.1.2 update-source loopback1
R2(config-bgp)#neighbor 1.1.1.4 remote-as 3
R2(config-bgp)#neighbor 1.1.1.4 activate
R2(config-bgp)#neighbor 1.1.1.4 ebgp-multihop ttl 5
R2(config-bgp)#neighbor 1.1.1.4 update-source loopback1
R2(config-bgp)#exit
6-64
Configuration on R3:
R3(config)#interface loopback1
R3(config-if)#ip address 1.1.1.4 255.255.255.255
R3(config-if)#exit
R3(config)#interface fei-0/1/1/1
R3(config-if)#ip address 12.1.1.1 255.255.255.252
R3(config-if)#exit
R3(config)#interface fei-0/1/2/1
R3(config-if)#ip address 14.1.1.1 255.255.255.252
R3(config-if)#exit
R3(config)#router bgp 3
R3(config-bgp)#redistribute connected
R3(config-bgp)#redistribute ospf-int metric 122
R3(config-bgp)#neighbor 1.1.1.3 remote-as 1
R3(config-bgp)#neighbor 1.1.1.3 activate
R3(config-bgp)#neighbor 1.1.1.3 ebgp-multihop ttl 5
R3(config-bgp)#neighbor 1.1.1.3 send-med
R3(config-bgp)#neighbor 1.1.1.3 update-source loopback1
R3(config-bgp)#exit
R3(config)#ip route 1.1.1.3 255.255.255.255 12.1.1.2
R3(config)#router ospf 1
R3(config-ospfv2)#network 14.1.1.0 0.0.0.3 area 0.0.0.0
Configuration on R4:
R4(config)#interface loopback1
R4(config-if)#ip address 1.1.1.1 255.255.255.255
R4(config-if)#exit
R4(config)#interface fei-0/1/1/1
R4(config-if)#ip address 11.1.1.1 255.255.255.252
R4(config-if)#negotiation auto
R4(config-if)#exit
R4(config)#interface fei-0/1/2/1
R4(config-if)#ip address 10.1.1.1 255.255.255.0
R4(config-if)#negotiation auto
R4(config-if)#exit
R4(config)#router bgp 2
R4(config-bgp)#redistribute connected
R4(config-bgp)#redistribute static
R4(config-bgp)#network 10.1.1.0 255.255.255.0
R4(config-bgp)#aggregate-address 192.168.0.0 255.255.252.0 count 0 as-set
R4(config-bgp)#neighbor 1.1.1.2 remote-as 1
R4(config-bgp)#neighbor 1.1.1.2 activate
6-65
Configuration on R5:
R5(config)#interface loopback1
R5(config-if)#ip address 1.1.1.5 255.255.255.255
R5(config-if)#exit
R5(config)#interface null1
R5(config-if)#exit
R5(config)#interface fei-0/1/1/1
R5(config-if)#ip address 20.1.1.1 255.255.255.0
R5(config-if)#negotiation auto
R5(config-if)#exit
R5(config)#interface fei-0/1/2/1
R5(config-if)#ip address 20.1.2.1 255.255.255.0
R5(config-if)#negotiation auto
R5(config-if)#exit
R5(config)#router ospf 1
R5(config-ospfv2)#network 14.1.1.0 0.0.0.3 area 0.0.0.0
R5(config-ospfv2)#network 20.1.1.0 0.0.0.255 area 0.0.0.0
R5(config-ospfv2)#exit
R5(config)#ip route 0.0.0.0 0.0.0.0 14.1.1.1
Configuration Verification
View BGP routing table and route forwarding table on R1.
6-66
6-67
6-68
*>14.1.1.0/30 14.1.1.1 0 ?
*>20.1.1.0/24 14.1.1.2 122 110 ?
*>192.168.0.0/22 1.1.1.3 20 1 2 ?
*>192.168.0.0/24 1.1.1.3 20 1 2 ?
*>192.168.1.0/24 1.1.1.3 20 1 2 ?
*>192.168.2.0/24 1.1.1.3 20 1 2 ?
*>192.168.3.0/24 1.1.1.3 20 1 2 ?
6-69
*>14.1.1.0/30 1.1.1.2 20 1 3 ?
*>20.1.1.0/24 1.1.1.2 20 1 3 ?
*>192.168.0.0/22 0.0.0.0 254 i
*>192.168.0.0/24 10.1.1.2 1 ?
*>192.168.1.0/24 10.1.1.2 1 ?
*>192.168.2.0/24 10.1.1.2 1 ?
*>192.168.3.0/24 10.1.1.2 1 ?
*>192.168.100.0/24 10.1.1.2 1 ?
R5#ping 10.1.1.2
sending 5,100-byte ICMP echos to 10.1.1.2,timeout is 2 seconds.
!!!!!
Success rate is 100 percent(5/5),round-trip min/avg/max= 0/0/0 ms.
6-70
R5#trace 10.1.1.2
tracing the route to 10.1.1.2
1 14.1.1.1 <20ms <20ms <20ms
2 12.1.1.2 <20ms <20ms <20ms
3 13.1.1.1 <20ms <20ms <20ms
4 11.1.1.1 <20ms <20ms <20ms
5 * * *
[finished]
The test results above show that the communication of specified network segment between
AS2 and AS3 is normal.
6-71
Configuration Commands
Configuration on R1:
R1(config)#router bgp 1
R1(config-bgp)#no synchronization
R1(config-bgp)#neighbor 172.16.1.2 remote-as 1
R1(config-bgp)#neighbor 172.16.1.2 next-hop-self
R1(config-bgp)#neighbor 172.16.20.1 remote-as 2
Configuration on R2:
R2(config)#ip route 183.16.0.0 255.255.0.0 173.16.2.1
R2(config)#router bgp 1
R2(config-bgp)#neighbor 172.16.1.1 remote-as 1
R2(config-bgp)#neighbor 172.16.1.1 next-hop-self
R2(config-bgp)#neighbor 183.16.20.2 remote-as 3
R2(config-bgp)#neighbor 183.16.20.2 ebgp-multihop ttl 2
R4(config-bgp)#exit
Configuration on R4:
R4(config)#router bgp 2
R4(config-bgp)#redistribute static
R4(config-bgp)#neighbor 172.16.20.2 remote-as 1
R4(config-bgp)#aggregate-address 192.16.0.0 255.255.0.0 count 0
as-set summary-only
R4(config-bgp)#neighbor 172.16.20.2 route-map torouter1 out
R4(config-bgp)#exit
R4(config)#ipv4-access-list 1
R4(config-ipv4-acl)#rule 1 deny 170.16.10.0 0.0.0.255
R4(config-ipv4-acl)#rule 2 permit any
6-72
R4(config-ipv4-acl)#exit
R4(config)#route-map torouter1 permit 10
R4(config-route-map)#match ip address 1
R4(config-route-map)#exit
Configuration on R5
R5(config)#ip route 173.16.0.0 255.255.0.0 183.16.20.1
R5(config)#router bgp 3
R5(config-bgp)#neighbor 173.16.20.2 remote-as 1
R5(config-bgp)#neighbor 173.16.20.2 ebgp-multihop ttl 2
Configuration Check
Use the show ip bgp summary command to view neighborhood on R4.
R4(config)#show ip bgp summary
Neighbor Ver As MsgRcvd MsgSend Up/Down(s) State/PfxRcd
172.16.20.2 4 1 46 140 00:22:35 0
6-73
6-74
Fault analysis:
In general, inspect whether the IP addresses of interfaces used to connect can ping each
other. If the ping is unsuccessful, inspect whether the physical link is in up state and
whether the physical interfaces can ping each other. If the physical interface cannot be
pinged, inspect whether the physical interface is in up state. If the physical interface is in
up state, but it still cannot be pinged successfully. Inspect cable, and modify the cable if
required. If physical state is up, maybe there is not the route to the peer loopback interface.
If there is not route make the related configuration to create route. If it can be pinged
successfully maybe AS number, multi-hop and TCP sender are not configured correctly.
Use the show ip bgp neighbor command to view error code. Compare BGP error code
table to locate error reason. If the problem still exists call technical support.
Update source The configuration item is required if use loopback interfaces to set
up connection.
6-75
1 The connection is
non-synchronized
The header of message is
1
wrong 2 The length of error message
6-76
5 Authentication failed
6 Non-acceptable Holdtime
2 Unidentifiable well-known
attribute
7 AS route loop
11 Abnormal AS_PATH
7 Connection conflict
6-77
6-78
6-79
6-80
I
ZXR10 M6000 Configuration Guide (IPv4 Routing)
II
Figures
III
Figures
V
Tables
CLNS
- ConnectionLess Network Sevice
DIS
- Designate IS
DR
- Designate Router
EBGP
- External Border Gateway Protocol
FRR
- Fast Reroute
IBGP
- Interior Border Gateway Protocol
IGP
- Interior Gateway Protocol
IP
- Intelligent Peripheral
IS-IS
- Intermediate System-to-Intermediate System
VII
ZXR10 M6000 Configuration Guide (IPv4 Routing)
ISO
- International Organization for Standardization
LSA
- Link State Advertisement
LSDB
- Link-state Database
LSP
- Link State Packet
LSU
- Link State Update
MD5
- Message Digest 5 Algorithm
MED
- MULTI_EXIT_DISC
MP-BGP
- Multiprotocol BGP
NBMA
- Non-Broadcast Multiple Access
NSSA
- Not-So-Stubby Area
OSI
- Open System Interconnection
OSPF
- Open Shortest Path First
PDU
- Protocol Data Unit
RFC
- Remote Feature Control
RIP
- Request In Progress
RR
- Router Reflector
SNP
- Sequence Num PDU
SPF
- Shortest Path First
TCB
- Transmission Control Block
VIII
Glossary
TCP
- Transfer Control Protocol
TE
- Traffic Engineering
UDP
- User Datagram Protocol
VLSM
- Variable Length Subnet Mask
VPN
- Virtual Private Network
VRF
- Virtual Route Forwarding
IX