oo Td " "SikandariShaik CCIEX3 (RS/SP/SEQ) ae eeeTable of Contents ‘About the Author. OSPF — ROUTING PROTOCOL. OSPF ~ SINGLE AREA CONFIGURATION. LAB: DYNAMIC ROUTING USING OSPF IN SINGLE AREA OSPF BEST PATH CALCULATION 21 OSPF MULTIPLE AREAS. LAB: DYNAMIC ROUTING USING OSPF MULTIPLE AREA. 31 LAB: OSPF — Redundant Links.. OSPFv2 INTERFACE SUB-COMMANDS..... OSPF NETWORK TYPES. a2 LAB: OSPF DR /BDR ELECTION OVER ETHERNET: AT OSPF — Advertising Default Routes. 50 LAB : DEFAULT ROUTES IN OSPF, os) OSPF Virtual Links = eo Ts 59 LAB : OSPF VIRTUAL-LINKS OSPF Link State Advertsements (LSA). OSPF STUBS... LAB: OSPF STUBS. 7 LAB - OSPF Totally StUB on — ee... dam. 2. 82 LAB 2: OSPF STUB AND TOTALLY STUB . 85 Not so Stubby Area (NSA). 91 LAB: NSSA (Not So Stubby Area)... LAB— Totally NSSA ( Not So Stubby Area) OSPFv3 Address-family Support (IPv4 / IPv6). LAB: OSPFV3 address-family ( IPv4/IPV6) OSPF Graceful Shutdown a7 LAB - OSPF Graceful Shutdown... OSPF Generic TTL Security Check 123 DEFAULT TOPOLOGY ~ for ISIS ROUTING LABS. \B : ISIS ROUTING .. B : ISIS ROUTING - Multiple Areas. 137 ISIS METRIC. ISIS AUTHENTICATION. 149 IS-IS Route Leaking for IPV4.. eee cere ae estISIS SINGLE AND MULTITOPLOGY.. 155 LAB-2 ISIS USING BACKBONE LEVEL:2 !....cmsnnnnnninininnnnnitinnnnnnininniniininnnnnninnnnnnsennnnesses 64About the Author Sikandar Shaik, a Triple CCIE (RS/SP/SEC # 35012), is a highly experienced and extremely driven senior technical instructor and network consultant. He has been training networking courses for more than 15 years, teaching on a wide range of topics including Routing and Switching, Service Provider and Security (CCNA to CCIE). In addifion, he has been developing and updating the content for these courses. He has assisted many engineers in passing out the lab examinations and securing certifications. Sikandar Shaik is highly skilled at designing, planning, coordinating, maintaining, troubleshooting and implementing changes to various aspects of multi-scaled, multi-platform, multi-protocol complex networks as well as course development and instruction for a technical workforce in a varied networking environment. His experience includes responsibilities ranging from operating and maintaining PC's and peripherals to network control programs for multi-faceted data communication networks in LAN, MAN and WAN environments. Sikandar Shaik has delivered instructor led trainings in several states in India as well as in abroad in countries like China, Kenya and UAE. He has also worked as a Freelance Cisco Certified Instructor globally for Corporate Major Clients. Acknowledgment First and foremost | would like to thank the Almighty for his continued blessings and for always being there for me. You have given me the power and confidence fo believe in myself and pursue my dreams. | could never have done this without the faith I have in you. Secondly | would like to thank my family for understanding my long nights at the computer. | have spent a lot of fime on preparing workbooks and this workbook would not have been possible without their support and encouragement. I would also like to recognize the cooperation of my students who took my trainings and workbooks. I believe my workbooks have helped them in upskilling themselves with respect to the subject and technologies and | will continue preparing workbooks for the updated technology versions. Shaik Gouse Moinuddin Sikandar CCIE x 3 (RS/SP/SEC) Feedback Please send feedback if there are any issues with respect to the content of this workbook. | would also appreciate suggestions from you which can improve this workbook further. Kindly send your feedback and suggestions af info@noasolutions.comPF - ROUTING Pi 1 OSPF — Open Shortest path First Sikandar Shaik CDIEx3 (RS/SP)/SEC # 35012 Senior Technical Instructor Facebook com/sikandar35012/ if _gentinieo (care) Youtube.com/sikandarshaik (cc c JAS core} Twitter.com/sikandarccie SOME se Linkedin.com/in/sikandarshaik/ Www Nozsalutions.cam Knowledge Pre-requisite outing ( OSPF/ISIS CCNA 200-301 ( old CCNA RS ~ 200-125) » Understand LAN/WAN Connectivity » IP address configuration » What is Routing ? » Static & Default Routing, Configurations » Dynamic Routing ~ overview / Basic configuration CERTIFIED (CCIE) SECURITY | BA.OSPF - Open Shortest path first NA, » Standard protocol (Cisco /Non-Cisco devices) » Link state protocol » Classless routing protocol (carry subnet-mask information & supports VLSM). » Uses SPF (shortest path first) or clikistra algorithm, » No limit for number of hops (routers) connected. > Metric - Least Cost (Sum of al the cost values) (cost=10 "8/B.W.) » Administrative distance is 10. » Supports Equal cost load balancing, RP spr eS Banawicth 1588 ananath rn i, Se en ae OSPF — How it works ? MA, Becoming neighbors: » A relationship between two routers that connect to the same data ak, ‘created so that the nelghboring routers have a means to exchange thelr LSDBB. Exchanging databases: » The process of sending LSAs to neighbors so that all routers learn the same LSAs. ‘Adding the best routes: » Calculating the best routes, and adding those to the IPvs routing table a Router LSA — Paral Contants Rewer: 9888 nt ads: 172168128 Site ue ot 10OSPF — Becoming Neighbors XA,, (OSPF process starts with messages called OSPF Hello messages DOWN - > Init state of a neighbor relationship. > Indicates that the router has not recelved any OSPF hello packets. ee ee Eee = S a a 8, (Hello) | am 192.168.2.100- unicast, ont c= > State indicates that a hello packet has been received from another router » but bidirectional communication has not been established. 2WAY- > Bidirectional communication has been established. > Ifa DR or BDR is needed, the election occurs during this state. (covered later) OSPF — Becoming Neighbors MOA, » Hello packets are sent to multicast IP address 2240.0.5 » Router sends multicast OSPF Hello packets to each interface and hopes to receive OSPF Hello packets from other routers connected to those interfaces. » OSPF routers can become neighbors if they are connected to the same subnet. RIDA FID 2.2.2.2 6—_o——__ @ (1 to Re Link comes up... @breno, seen (owt, My RIOA.21.3 > Hello, Seon [1.1.1.11,My RID 2.2.2.2 @ [init > 2eway means both routers become neighbors & ready to exchange their LSDB with each other. » Verify OSPF neighbors 4 Show Ip ospf neighbor wren sso, nesta mmameutnssam "Page 7Verify OPSF Neighbors XA, » Once both routers become neighbors and ready to exchange their LSDB with each other. » Verify OSPF neighbors 4 Show Ip ospf neighbor R2tahow ip capt neighbor Neighbor 1D Pei State iser6e.2.100 0 PULLS — Sexian0/e/a isa"age't i000 Fumay — serss20/0/0 ae OSPF Router-ID iM OA, » OSPF router ID (RID) is a 32-bit number that uniquely identifies an OSPF router » OSPF router is identified using same ID in all directions. > Router-ID decided based on the order given below Manual Router-D ( prefered) 2. Highest IP of the Loopback interface 3. Highest IP of Physical Interface » Default uses highest IP address of active physical interface.( if not configured) ——— —Fao/ a0/1—$ Router(config) # Router ospf1 Router(config-router) + Router-id 11.1.1.1 ee ee 11.11.11,.11 NOTE >The RID must be unique for each OSPF process in an OSPF domain. » and must be unique between OSPF processes on a same router.OSPF Router-ID_- Verification Sort Koutert) - vertication NM OA, [R2¥show ip protocols Routing protocol is “ospf 1" ‘Outgoing update #4: fRatshow ip spf neighbor fnoighbor 1D Dead Tins Address snvartace is2vi¢9- 3.100 000035 2i-010c2 orisi0/0/3 0:00:30 4010.0. serialo/0/3 OSPF — LSDB . NRA. First, the routers together build a lot of information about the network: routers, links, IP addresses, status information » Then the routers flood the Information, so all routers know the same information. Advertise practically every detail about the intermetwork to all the other routers. At the end, every router in the internetwork must have exact same information about the internetwork, Link State Database (LSDB) a Router LSA — Paral Contents RoueriD: 8888 Int P Adres: 172.16.8:1/04 State: up Cost 10 » Each LSA isa data structure with some speci formation about the network topology > LSDB is simply the collection of all the LSAs » Display information about different OSPF LSAs. 4# show ip ospf databaseOSPF Database Table NA, » Referred to as LSDB (link state database) » Every router in the Internetwork must have exact same information about the internetwork. © ft show Ip ospf database Link State Database (LSDB) Re Router LSA ~ Patil Contant ouerid 0888 re P Ascrss: 172 163.128 Stato ue Ratshow 4p onpe decane Eos 2 Ose Router with ID (292.168.7.100) (Procers 1D 1) Router Tink statee (Ares 0) 192-16 Ys2.460.2-200 2254 Sndda00000 Oxobtens Sn 1e2si6s Isaites:3.100 i236 Gag0000006 Oxcoete? 3 OSPF — Exchanging the LSDB Between Neighbors NOA., EXSTART » This is the first state in forming an adjacency. » Routers identify which router will be the master or slave for the LSDB synchronization. soln GR te ty 7) RAL I I SS EERE sinhaOSPF — Exchanging the LSDB Between Neighbors NA, » After two routers declde to exchange databases, they do nor simply send the contents of the entire database. » Exchange list of LSAs in their respective databases—not al the detalls of the LSAs, » Then each router can check which LSAs it already has and then ask the other router for only the LSAs woos 92.40.00 921002. 100| BS teetsummay ot database —S > “Thank forthe information EXCHANGE > During this state, routers are exchanging link states by using DBD packets. OSPF — Adding the Best routes NA, » Each router can check which LSAs it already has and then ask the other router for only the LSAs » At the end, every router in the internetwork must have exact same information about the internetwork. Link State Database (L808) tA | wz Se = ee LOADING Ea > LSR packets are sent to the neighbor, © Asking for the more recent LSAs that have been discovered (but not received) in the Exchange state. FULL » Neighboring routers are fully adjacent. (Routers have synchronized database). » Apply algorithm analyzes (with math) the LSDB © Calculate the best route based on Bandwidth (10% /BW) ~ update in the Routing table.Maintaining Neighbors and the LSDB NA, » Incremental updates » Periodically send hello packets are sent every 10 seconds ( dead ~ 40 sec) Sar > Convergence rate fs fast (40 sec) Perlodic Update ~ 30 Minutes » Each router reflood the LSA every 30 minutes (the default), ever rno changes occur. (Note that each LSA has a separate timer, based on when the LSA was created, so there Is no single big event where the network Is overloaded with flooding LSAs.) Nelghbor table » Includes the list of directly connected router information. veh — Pri Cone 4 show Ip ospf neighbor San Routing table » The best route to the destination © show Ip route Database Table » Referred to as LSDB (link state database) Every router in the intemetwork must have exact same information about the Internetwork. 4 show Ip ospf databaseLE ARE Configuring OSPF NEA, (config router ospf (config-router)s network area cans caycars Sa Rivonia att Be GE a. Mem enon mano wots ae > Process ID ia number wsed to ently an OSPF routing proces onthe outer. >= + Multiple OSPF proceses can be arted onthe same route. >The mumber canbe any vale Beomen Vand 6b OSPF - Wild Card Mask ( WCM) NA,, Tells the IOS which portion of the bits to match or ignore. » Decimale: The router must compare this octet as normal. Decimal 255: The router ignores this octet, considering it to already match. tt t 0. 0. 0. Et 2 0. al at 0.255.255 .255 In OSPF wildcard mask ao (0- Checks the corresponding bitin the address 4 = Ignores the corresponding bit inthe address [rh IgnoreCalculating Wild card Mask — for Subnets MOA, ‘Global Subnet Mask 255. 255. 255. 255 255. 255. 255. 255 255. 255, 255. 255 255, 255, 255, 255 Subnet Mask 255. 255, 255. 0 255. 255, 255. 240 255, 255, 252. 0 255, 255. 255. 255, 0.255 In OSPF wildcard mask: 0 = Checks the corresponding bit inthe address 1 Ignore the cortesponding bitin the address 5.38) (88) 0. 0, 0.285 0. 0.285.285 255 = Ignore Wild card Mask — Examples NOA. Wildcard 0.0.00: » Compare all four octets. af “ge sat soo » In other words the numbers must exactly match. “™"***" - Wildcard 0.0.0.255: » Compare the first three octets only. In OSPF wildcard mask: 0 Checks the corresponding bit in the address » Ignore the last octet when comparing the numbers. {Zig the coreanercane tits aceas Wildcard 0.0.255.255: onal > Compare the fist wo octets ony. [eh » Ignore the last two octets when comparing the numbers. cone roxmer , eswoet 10.100 0.0-258 255 jaren 0 Wildcard 0.255.255.255: » Compare the first octet only. > Ignore the last three octets when comparing the numbers. Wildcard 255.255.255.255: » Compare nothing; > this wildcard mask means that all addresses wi ‘match the network commandOSPF Single Area ~ Pre-requisite NOA. Fr » Connectivity » IP Addressing configured >All interfaces UP (configh router ospf (config-router)# network area OSPF Single Area — Configuration XA,, (confighs router ospf (config-router)s network area R-2(configirouter ospf 1 R-2(config-routerfenetwork 192.168.2.0 0.0.0.255 area 0 Re2{config-routeryenetwork 11.0.0.0 0.255.255.255 area 0 R.2(config-routeryinetwork 10.0.0.0 0.255.255.255 area 0 Ret(confighrouter ospf 1 Ret(config-routerymnetwork 192.168.1.0 0.0.0.255 areao Rev(config-routerenetwork 10.0.0 0.255.255.255 areao R-2(configtrouter ospf 1 R-x(config-routernetwork 192.168.3.0 0.0.0.255 areao R-x(config-routeryénetwork 11.0.0.0 0.255.255.255 area 0OSPF Single Area ~ Verification 32.168. 1-0 (110/65) vis 10.0.0-1, 03:59:33, sertai0/0/0 ol Jo 392:16615-0 (110/65) via 11.0.0.2, 03:59:33, seriai0/0/2 > Show ip ospf neighbor » Show Ip protocols > # Show Ip route » show Ip ospf database — Ravehow ip oapt Heightor } fateh Sp ope oath oh rp (192.168.2.100) (Process 25 1) ]152.168.2.200 Router Link states (Rees 0) apy pouter age Y52.te8:2.100 144 289000004 Oadotter 5 OSPF — Advertisement Example 60/01 network Match addresses | G0/0.2 10.1.0.0 that begin with | G0/0/0 0.0.255.255 10.1 60/10 60/2/0 60/01 Severe Match addresses | 60/02 Poe2 that begin with 10 | C0/0/0 0.255.255.255 Be Go/r/o G0/2/0 60/01 network 60/02 0.0.0.0 tee 60/0/0 255.255,255.255 G0/1/0 60/2/0 network Match addresses 10.1.13.0 that begin with | 60/1/0 0.0.0.255 10.113 network ‘Match one 10.1.13.1 o/t/o yy address: 10.1.13.1192.168.2.1 192.168.2.2 192.168,34~192.168.3.2 sro 192.168.2.0/24 ee 168.3.0/24 Pre-requirement for LAB (check previous labs) * Design the topology ( connectivity } © Assign the IP address according to diagram + Make sure that interfaces used should be in UP UP state Configure Dynamic routing using OSPF single area as per the diagram Verify Routing table and reachability between the LAN's ( using PING and TRACE commands } R-I#tsh ip route Gateway of last resort is not set C 10.0.0.0/8 is directly connected, Seriai0/0 CC 192.168.1.0/24 is directly connected, Fastéthernet0/0 R-2tsh ip route Gateway of last resort is not set C 10.0.0.0/8 is directly connected, Seriai0/0 C 11.0.0.0/8 is directly connected, Serial0/1 CC 192.168.2.0/24 is directly connected, FastEthernet0/0 R-3#tsh ip route Gateway of last resort is not set C 11.0.0.0/8 is directly connected, Seriai0/0 CC 192.168.3.0/24 is directly connected, Fastéthemet0/0 Router- 1R-1(config) #router ospf 1 R-1(config-outer) #network 192.168.1.0 0.0.0.255 area 0 -I (config-router) #network 10.0.0.0 0.255.255.255 area 0 (config) #router ospf 1 (config-router) #network 192,168.20 0.0.0.255 area 0 (config-outer) #network 11.0.0.0 0.255.255.255 area 0 (config-router) #network 10.0.0.0 0.255.255.255 area 0 Router -3 R-3(config) #router ospf 1 R-3{config-router) #network 192.168.3.0 0.0.0.255 area 0 R-3(config-router) #network 11.0.0.0 0.255.255.255 area 0 ———ee R-2#show ip ospf neighbor Neighbor ID Pri State Dead Time Address __ interface 192.168.1100 0 FULL/- 00:00:35 10.0.0.1_—Serial0/0 192.168.3.100 0 FULL/ - 00:00:37. 1.0.0.2 Serial0/1 R-1#tshow ip route Gateway of last resort is not set C 10.0.0.0/8 is io connected, Serial0/0 C_192.168.1.0/24 is i connected, FastEthernet0/0 R-1#sh ip route ospf © 11.0.0.0 [110/128] via 10.0.0.2, 00:04:25, Serial0/0 O 192,168.2.0 [110/65] via 10.0.0.2, 00:04:25, Sericl0/0 © 192,168.3.0 [110/129] via 10.0.0.2, 00:03:23, Seriai0/0 R-2#show ip route ospf © 192,168.1.0 [110/65] via 10.0.0.1, 00:05:09, Serial0/0 © 192,168.3.0 [110/65] via 1.0.0.2, 00:04:14, Serial0/1 R-3#show ip route ospf © 10.0.0.0 [110/128] via 11.0.0.1, 00:04:49, Seriai0/0 O 192.168.1.0 [110/129] via 11.0.0.1, 00:04:49, Seriai0/0 © 192,168.2.0 [110/65] via 11.0.0.1, 00:04:49, Sericl0/0 R-1#show ip protocolsRouting Protocol is (OSBne Outgoing update filter lst for all interfaces is not set Incoming update fitter lst for ail interfaces is not set Router Number of areas in this router is 1. | normal 0 stub 0 nssa Maximum path: 4 “va for Network: Routing Information Sources: Gateway Distance __Last Update 10.0.0.2 110 00:05:46 Distance: (default is 110) R-1#show ip ospf database OSPF Router with ID (192.168.1.100) (Process ID 1) Router Link LinkID ADVRouter Age — Seq# Checksum Link count 192,168.1.100 192.168.1.100 468 0x80000003 Ox00d1f4 3 192.168.2.100 192.168.2100 411 0x80000005 0x0054e6 5 192,168.3.100 192.168.3100 411 0x80000003 0x0010ad 3 PC>ipconfig IP Address... 192.168.1.1. Subnet Mask. sev! 255.255.2550 Default Gateway. 192,168. 1.100 PC>ping 192.168.2.1 Pinging 192.168.2.1 with 32 bytes of data: Request timed out. #=32 time=19ms TIL=126 Reply from 192.168.2.1: bytes=32 time=20ms TL=126 Reply from 192. 168.2.1: bytes=32 time=!4ms TTL=126 PC>ping 192.168.3.1 Pinging 192.168.3.1 with 32 bytes of data: Request timed out. epi om SSE SMEYES=92 time=27ms M=125 Reply from 192.168.3.1: bytes=32 time=22ms TIL=125 Reply from 192.168.3.1: bytes=32 time=25ms TIL=125 PC>tracert 192.168.3.1 Tracing route to 192.168.3.] over a maximum of 30 hops: 1 5ms &ms 8&ms 192.168.1.100 2 12ms 9ms 8ms 10.0.0.2 3. 17ms ms I2ms 1.0.0.2 4 24ms 27ms 25ms 192.1683.) Trace complete. R-1#ping 192.168.3.1 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos to 192.168.3.1, timeout is 2 seconds:Success rate is JOOIBErEEnt (5/5). round-trip min/avg/ma» 9/16/31 ms R-3#ping 192.168.1.1 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos to 192.168.].1, timeout is 2 seconds: Success rate is TOOIBEPEEMT (5/5), round-trip min/avg/max = 10/15/18 msPF BEST P) LATION OSPF - Best Routes Calculation with SPF NEA, » OSPF LSAs contain useful information, but they do not contaln the specific Information that a router needs to add ro Its [Pv routing table. » A router cannot just copy Information from the LSDB Into a route in the IPva routing able. » Each router use SPF algorithm to calculate the best route The sum of the OSPF interface costs for all outgoing Interfaces In the route. Router then adds each route to its routing table: a route with a subnet number and mask, an outgoing interface, and a nex-hop router IP address faa¥atow Ip route capt Jo. s52-269.1-0 (110/65) vie 10.0.0.2, 03:59:33, serisi0/0/0 lo sa'ie8.3.0 (1i0res] via 1.0.0.2, 03:59:33, Serislo/0/ = OSPF - Best Routes Calculation with SPF NOAA, > RIRY-Rs Left 10 + 180 + 10 = 200 > RIARS-R6-Rs Middle 20+ 30 +40 + 10 = 100 > RIHR2-R3-Ra-Rs Right 30+60+2045+10= 125 i Each router use SPF algorithm to calculate the best route crmteaony » The sum of the OSPF interface cost for all outgoing interfaces inthe route. » Router then adds each route to its routing table: » a route witha subnet number and mask, an outgoing interface, and a nexthop router IP address OSPF METRICOSPF Metrics (Cost) JM A, (Cisco routers allow three different ways to change the OSPF interface cost: Using the defaule calculation per interface, and changing the Ancerface bandwidth setting, Which changes the calculated value. » Directly, using the interface subcommand ip ospf cost x Using the defaule calculation per interface, and changing the OSPF reference bandwidth setting, which changes the calculated value contig) interface 507076 4 tp onpe cout 4 thet ‘ae ioe 0088 Fast ferme 109,000 Kbps 100,000/100, 000 1 Stn then ‘pense | oma 7 one Be ‘eoroaeenien | senor 1 ee : OSPF Metrics (Cost) ~ Default Reference Bandwidth NA, » SPF calculates the metric for each route, © Choosing the route with the best metric for each destination subnet. » By default, uses the interface bandwidth to make decisions © Reference bandwidth (100 Mbps) 10*/ Interface bandwidth » Interface Bandwidth = uses default Sev 3509 309003548 8 10 ‘hart 100 Kbpe 0000 /38008| » ra Fe tienet 109.080 re 0909/0000 : Gest tet 29 001 00/1090 z a ogee cmernt | 1oammKee | Lopee/iomme. 00 1 286 10Gibteownnt | 100000.800Vies | 100.05/:09400.500 x maOSPF Metrics (Cost) — Default Reference Bandwidth NA,, » By default, uses the Interface bandwidth to make decisions © Reference bandwidth (100 Mbps) / Interface bandwidth > Incerface Bandwidth — uses default » interface bandwidth setting does not influence the actual transmission speed ‘100 mbps 1 10Mbps 1.544 Mbps 6 168 Kbps 1 (eK 128 Kbps mH OSPF Metrics (Cost) ~ Default Reference Bandwidth NOA, Limitations » IOS default reference bandwidth setting used eatier with much slower links » Any interface with an interface bandwidth of 100 Mbps or faster ties with a calculated OSPF cost of 1 (OSPF rounds up for these calculations, resulting in a lowest possible OSPF interface cost of 1. » All interfaces from Fast Ethernet’s 100 Mbps and faster tie with their default OSPF cost » OSPF would treat a 190-Mbps link as having the same cost as a 10- or 100-Gbps link, which is probably not the right basis for choosing routes. 100 Gbps 1 40 Gbps 1 10.Gbps 1 1.Gbps 100 Mops 10 Mbps fa Sa 5H 100080 / 3586 # Asaiaa ia tee 198001 109080 / 3008 ” Moe Fast eret 100.0 ps 10./300.00| 3 788 Kbps 133 Geni terat 100,00.» nef. 000 2 a4 Kops ae oc here 1oseooookiee | imaefioenea00 2 ores TH {oocgabe erat | 109G09600K | L005E/A00.00 00 7OSPF Metrics (Cost) -_ Manual Cost » To change OSPF cost directly, using the interface subcommand ip ospf cost x Ri (config)# interface g0/0/0 Ri(config-it)# Spleapeleost ls Ri(config-if}# interface g0/1/0 R £3 +) Spleape leases Rap show 4p ope sntertace briet Interface PID XP addrecs/Mask (BRE State Nore #/¢ orton oio/o.2 2 y0..2.4/24 2 pe 0/0 cio 2 wats 2k af marr woaazaes § RA cays 3 wonasz2 mR a ein2fe 4 waa 1 aA NOTE >The output also shows a cost value of 1 for the other Gigabit interfaces, hich isthe default OSPF cost for any interface faster than 100 Mbps. OSPF Metrics (Cost) - Auto-cost reference-bandwidth OA, We can still use OSPF’s default cost calculation & changing the reference bandwidth » with the auto-cost reference-bandwidth speed » Default is 100 Mbps ( Cost — 1 ) 109,000/100,000 » Allow room for higher speeds. auto-cost reference-bandwidth 100,000 command, meaning 100,000 Mbps or 100 Gbps.) > 100-Gbps Tinks to have an OSPF cost of 1, > 40-Gbps links to have a cost of 4, 10-Gbps links to have a cost of 10, Ra(confighrouter ospf 1 a >and 1-Gbps fnks thas » and 1 Gps Mal a Ra(config router)pauto-costreference-bandwidth 100000 l2banow i 09 gabitethernet0/0 is rea 0 Network Type BROADCAST, ESRI NOTE > Cisco recommends making the OSPF reference bandwidth setting the same on all OSPF routers in an enterprise network. when Saronie stones maraseahtonnsem® Page 26NETWORK ONLINE ACADEMY OSPF Areas Sikandar Shaik CCIEX3 (RS/SP)/SEC # 35012 Senior Technical Instructor Fen dite fh Aheacbe cfkaeto (coe) oft ‘acebook.com/sikandar: APRIL Youtube.com/sikandarshaik (CCl J) CCIE E} (ccl le) : : urea Ew (ccie) Iwitter.com/sikandarecie = Linkedin.com/in/sikandarshaik/ Www.Noasolutions.com OSPF Areas NA. (OSEP with all interfaces into the same area (usually area 0), and it works. Larger OSPF networks suffer with a single-area design. » Example - Enterprise network with 900 routers, rather than only 11, and several thousand subnets ‘Takes more CPU time & resources to run SPF Algorithm on all database. Impact the OSPF Convergence time — very slow to react to changes in the network. Single Area OSPFOSPF Single Area — Limitations JM OA, » A larger topology database requires more memory on each router. » Takes more CPU time & resources to run SPF Algorithm on all database. » A single interface status change anywhere in the Internetwork (up to down, or down to up) forces every router to run SPF again! » Impact the OSPF Convergence time ~ very slow to react to changes in the network. My SPF algorithm runs too many times Jam recelving too many advertisements (LSA) My Database & Routing table is too big am running low on memoryOSPF Multiple Areas A, 6 A. > Multiple Areas allows to logically group set of routers in one Area. » One large LSDB and break it into several smaller LSDBs by using OSPF areas agri Bample » Internetwork with 100 routers and 200 subnets, » Broken in 10 areas, would average 10 routers and 20 subnets per area » The SPF calculation on a router would have to only process topology about 10 routers and 20 links, » rather than 109 routers and 200 links. Minimizes the CPU a Memory resources to build & process database ( smaller database) ‘Any changes LSA advertised with in the Area (flooding LSA with in the Area) OSPF Multiple Areas A,, » OSPF Areas are logical grouping of Routers . > Minimizes the CPU & Memory resources to build & process database ( smaller database) All the routers maintain same database with in the same Area » Any changes LSA advertised with in the Area (flooding LSA with in the Area) Any change impact all the routers with the same area. Faster Convergence = if any changes occur: Restrict any changes with In that area. (not flood outside area) Routers with in the same area participate in AlgorithmOSPF multiple Areas — Design Rules MPA, » One Area (use any Area number) fess than 30-50 Routers. » Two or more - Must have one area called as area 0 (its backbone area) » All the non-backbone areas must connect to area 0. (Any Area o Router must be transit area) » Atleast one Area Border Router ( at least one interface in both areas - connecting two or more areas) > Interfaces of both routers facing must be in the same Area. Area OSPF Multiple Areas ~ Configuration Example NA, Area 23 a aE aot coxa tiene ‘3 network 20.2.1.2 0.0.0.0 a#6al/0 network 10.1.2.1 0.0.0.0 axgamg | Aread network network 10.1.13.1 0.0.0.0 aiea23 2.12.2 0.0.0.0 AEGAIS 1 network 20.2.24.2 ¢.0.0.0 a8a4OSPF multiple Areas ~ Configuration Mf OA, (config router ospf (configrouters network area Ret(confightrouter ospf 1 Reconfig-rourerpanetwork 192.168.1.0 0.0.0.255 area 10 Revconfig-routerbenetwork 10.0.0.0 —0.255.255.255 area 10 — oe R-2{confighsrouter ospf 1 R-{configitrouter ospf 1 R-2{config-router)enetwork 192.168.20 0.0.0.255 area 0 R-s{config-routerjanetwork 192.168.3.0 0.0.0.255 area 20 R-2(config-router)ynetwork 11.0.00 0.255.255.255 area 20 R-3{config-router)ynetwork 11.0.0.0 0.255.255.255 area 20 Re2(configrouterienetwork 10.0.00 _0.255.255.255 area 10 Verification NEA. OSPF multiple Areas sarkes-s-t00 "0 Fuuh e fR2tshow ip route ospt Jo 192.168.1.0 [110/6477] via 10.0.0.1, 00200: Jo 192.168:3:0 [110/6477] via 1.0.0.2, 00:00: 3, Serialo/o/o 1, Serial0/0/1 lo IA 11-0,0.0 [11076840] via 10.0.0.2, 00:01:23, Serial0/0/0 192.468.2.0 (110/16¢) via i0:0:0%2, 00:01:23, Sertai0/0/0 1 )-2, 00200246, Serial0/0/0 0 [14076541] wha 10.0.PF MULTIPLE AREA 192.168.1.3, 192.168.1.1 192,168.14 ‘190.108.12 192.168.2.1 192,168.22 192.168.3.1 192.168.3.2 192.168.1.0/24 192.168,2.0/24 192.168.3.0/24 Pre-requirement for LAB (check previous labs) * Design the topology { connectivity } © Assign the IP address according to diagram Make sure that interfaces used should be in UP UP state TASK: ‘Dynamic routing using OSPF multiple area + Verify Routing table and reachability between the LAN's ( using PING and TRACE commands ) R-1#sh ip route Gateway of last resort is not set C 10.0.0.0/8 is directly connected, Serial0/0 C 192.168.1.0/24 is directly connected, Fastethernet0/0 R-2itsh ip route Gateway of last resort is not set C 10.0.0.0/8 is directly connected, Serial0/0 C 11.0.0.0/8 is directly connected, Serial0/1 C 192.168.2.0/24 is directly connected, Fastéthernet0/0 R-3#sh ip route Gateway of last resort is not set C 11.0.0.0/8 is directly connected, Seriai0/0 CC 192.168.3.0/24 is directly connected, Fastéthemet0/0 Router- 1R-1(config) #router ospf 1 R-I(config-router) #network 192.168.1.0 0.0.0.255 area 10 R-1(config-outer) #network 10.0.0.0 0.255.255.255 area 10 Router -2 R-2{config) #router ospf 1 R-2(config-router] #network 192,168.20 0.0.0.255 area 0 R-2(config-outer) #network 11.0.0.0 0.255.255.255 area 20 R-2{config-router) #nefwork 10.0.0.0 0.255.255.255 area 10 Router -3 R-3(config) #router ospf 1 R-3{config-router) #network 192.168.3.0 0.0.0.255 area 20 R-3(config-router) #network 11.0.0.0 0.255.255.255 area 20 ———— ee R-2#show ip ospf neighbor Neighbor ID Pri State Dead Time Address __ Interface 192,168.3.100 0 FULL/- 00:00:39 1.0.0.2 SerialO/1 192.168.1100 0 FULL/- 00:00:39 0.0.0.1 —Serial0/0 R-1#tshow ip route Gateway of last resort is not set C_ 10.0.0.0/8 is directly connected, Seriaio/0 O1A 11.0.0.0/8 C_192.168.1.0/24 is directly connected, Fastéthernet0/0 R-1#show ip route ospf O1A 11.0.0.0 [110/128] via 10.0.0.2, 00:06:24, Serial0/0 O1A 192,168.2.0 [110/65] via 10.0.0.2, 00:06:24, Serial0/0 O1A 192, 168.3.0 [110/129] via 10.0.0.2, 00:05:53, Serial0/0 R-2#tshow ip route ospf © 192.168.1.0 [110/65] via 10.0.0.1, 00:08:31, Serial0/0 © 192,168.3.0 [110/65] via 1.0.0.2, 00:08:04, Serial0/1 R-3#show ip route ospf OIA 10.0.0.0 [110/128] via 1 1.0.0.1, 00:08:21, Serial0/0 OIA 192, 168.1.0 [110/129] via 1.0.0.1, 00:08:21, SerialO/0 OIA 192.168.2.0 [110/65] via 11.0.0.1, 00:08:21, Serial0/0 R-1#sh ip ospf databaseOSPF Router with ID (192.168. 1.100) (Process ID 1) Router Link States LinkID ADVRouter Age — Seq# —_ Checksum Link count 192.168.1100 192.168.1.100 902 0x80000003 0x003b8b 3 192,168.2.100 192.168.2.100 902 0x80000002 0x00e758 2 Summary Net Link States (ARBGNIO) LinkID___ADVRouter Age — Seq# Checksum 192.168.2.0 192.168.2.100 905 _ 0x80000001 Ox00S7cb 11.0.0.0 192.168.2100 905 0x80000002 0x00063e 192.168.3.0 192.168.2.100 870 0x80000003 Ox00cal5 R-2#show ip ospf database OSPF Router with ID (192.168. Router Link States — Link ID ADVRouter Age — Seq# 192.168.2.100 192.168.2.100 708 100) (Process ID 1) Checksum Link count (0x80000002 0x0070d6 1 Summary Net Link States (Area 0) Link ID ADVRouter. Age — Seq# —_ Checksum 11.0.0.0 192.168.2100 698 0x80000001 0x00083e 10.0.0.0. 192.168.2100 689 0x80000002 0x001337 192.168.1.0 192.168.2100 689 0x80000003 0x00e001 192.168.3.0 192.168.2100 663 0x80000004 0x00c816 Router Link States (AF@@I10) LinkID ADVRouter Age Seg# —_ Checksum Link count 192,168.2.100 192.168.2100 694 — 0x80000002 0x00e758 2 192.168.1100 192.168.1.100 694 0x80000003 0x003b8b 3 Summary Net Link States (Area 10) LinkID ADVRouter Age Seq# Checksum 192,168.20 192.168.2100 697 0x80000001 0x0057¢b 11.0.0.0 192.168.2100 697 0x80000002 0x00063d 192,168.3.0 192.168.2100 662 0x80000003 Ox00cals Router Link SREFESTAREGZO) linkID ADVRouter Age — Seq# Checksum Link count 192.168.2.100 192.168.2100 668 0x80000002 0x000a33 2 192.168.3.100 192.168.3.100 668 0x80000003 0x00 10ad 3 Summary Net Link SRGFSSARSa20) linkID ADVRouter Age — Seq#_—_ Checksum 192.168.2.0 192.168.2100 703 _ 0x80000001 0x0057cb 10.0.0.0 192.168.2100 689 0x80000002 0x001331 192.168.1.0 192.168.2.100 689 —_0x80000003 0x00e001 PC>ipconfig IP Address. 192.168.1.1 Subnet Mask. 255.255.255.0Default Gateway. 2 192,168.1.100 PC>ping 192.168.2.1 Pinging 192.168.2.1 with 32 bytes of data: Request timed out. Reply from 192.168.2.1: bytes-32 time=19ms TIL=126 Reply from 192.168.2.1: bytes=32 time=20ms TIL=126 Reply from 192.168.2.1: bytes=32 time=14ms TTL=126 PC>ping 192.168.3.1 Pinging 192.168.3.} with 32 bytes of data: Request timed out. 1-32 time=27ms TIL=125 Reply from 192.168.3.1: bytes=32 time=22ms TL=125 Reply from 192. 168.3.1: bytes=32 time=25ms TTL=125 PC>tracert 192.168.3.1 Tracing route to 192.168.3.1 over a maximum of 30 hops: 1 5ms &ms 8ms 192.168.1.100 2 12ms 9ms 8ms 10.0.0.2 3 I7ms éms 12ms 1.0.0.2 4 24ms 27ms 25ms 192.168.3.1 Trace complete. R-l#ping 192.168.3.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 192. 168.3.1, timeout is 2 seconds: Success rate is FOOIBEPEEMT (5/5). round-trip min/avg/max = 9/16/31 ms R-3#tping 192.168.1.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds: Success rate is JOOIBErEEMt (5/5), round-trip min/avg/max = 10/15/18 msveanen a 216880724 r92.108.20/24 R-1 (config) #router ospf 1 R-1(config-router) # network 10.0.0.0 0.255.255.255 area 0 R-1(config-router) # network 192.168.1.0 0.0.0.255 area 10 R-1 (config-router) #exit R-2{config] #router ospf 2 R-2{config-router)# network 192.168.2.0 0.0.0.255 area 0 R-2{config-router)# network 10.0.0.0 0.255.255.255 area 0 R-2{config-router] # network 1.0.0.0 0.255.255.255 area 0 R-2{config-router) tend R-3(config) # router ospf 3 R-3(config-router) #network 192,168.3.0 0.0.0.255 area 20 R-3(config-router] #network 1.0.0.0 0.255.255.255 area 0 R-3(config-router) #end R-3#tsh ip ospf neighbor Neighbor ID Pri State DeadTime Adaress Interface 192.168.2.100 0 FULL/- 00:00:39 11.0.1 Serial0/0 R-3#tsh ip protocols Routing Protocol is “ospf 3" Outgoing update filter list for ail interfaces is not set Incoming update fitter list for all inferfaces is not set Router ID 192.168.3.100 Number of areas in this router is 2. 2 normal 0 stub 0 nssa Maximum path: 4 Routing for Nefworks: 192.168.3.00.0.0.255 area 20 11.0.0.0 0.255.255.255 area 0 Routing Information Sources: 15.0724Gateway Distance _ Last Update 192.168.1100 110 00:03:23 192.168.2100 110 00:01:05 192.168.3100 110 00:01:05 Distance: (default is 110) R-3itsh ip route ospf © 10.0.0.0 [110/128] via 11.0.0. 1, 00:01:28, Seriai0/0 OIA 192. 168.1.0 [110/129] via 11.0.0.1, 00:01:28, SerialO/0 © 192.168.2.0 [110/65] via 1.0.0.1, 00:01:28, Serial0/0 R-2itsh ip ospf neighbor Neighbor ID Pri State Dead Time Address __ Interface 192.168.1100 0 FULL/- 00:00:36 10.0.0.) Seriail0/0 192.168.3.100 0 FULL/ - 00:00:36 11.0.0.2 Serial? R-2itsh ip route ospf OA 192.168.1.0 [110/65] via 10.0.0. 1, 00:05:31, Serial0/0 OIA 192,168.3.0 [110/65] via 11.0.0.2, 00:03:12, Serial0/1 R-Iitsh ip route ospf © 11.0.0.0 110/128] via 10.0.0.2, 00:07:05, Seriai0/0 © 192.168.2.0 [110/65] via 10.0.0.2, 00:07:05, Serial0/0 O1A 192. 168.3.0 [110/129] via 10.0.0.2, 00:04:40, SerialO/O R-1itsh ip ospf database OSPF Router with ID (192.168.1.100) (Process ID 1) Router Link States (Area 0) UnkID ADVRouter Age — Seq# Checksum Link count 192.168.1100 192.168.1.100 480 0x80000002 Oxo0fa4d 2 192.168.2.100 192.168.2.100 341 — Qx80000005 0x009c9e 5 192.168.3100 192.168.3.100 341 Qx80000002 Ox00fc3e 2 Summary Net Link States (Area 0) LinkID— ADVRouter Age — Seq# Checksum 192,168.10 192.168.1.100 602 0x80000001 0x0069bb 192.168.3.0 192.168.3100 346 0x80000001 Ox0045db Router Link States (Area 10) LinkID— ADVRouter Age Seq# Checksum Link count 192,168.1.100 192.168.1.100 607 0x80000002 0x0079a0 1 Summary Net Link States (Area 10) LinkID ADVRouter Age = Seq# ~— Checksum 10.0.0.0 192.168.1100 624 — 0x80000001 Ox001¢2a 192,168.20 192.168.1.100 475 _ 0x80000002 Oxd0de04 11,0.0.0 192.168.1100 475 0x80000003 Ox008a75 192.168.3.0 192.168.1.100 331 0x80000004 Ox00524dR-1#ping 192.168.3.1 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos fo 192.168.3. 1, timeout is 2 seconds: Success rate is 100 percent (5/5), roundtrip min/avg/max = 2/3/5 ms R-I#ttraceroute 192.168.3.1 Type escape sequence fo abort. Tracing the route to 192.168.3.1 1 10.0.0.2 Imsec Imsec Omsec 2 11.0.0.2 Imsec Omsec I msec 3 192,168.31 Imsec 5msec Omsec TASK: * Connect Wan link between R1-R3 + Assing IP address given int diagram and advertise in ospf area 0 R-1#tsh ip int brief Interface IP-Address OK? Method Status Protocol FastEthernet0/O —_192.168.1.100 YES manual up up Seriai0/0 10.0.0.) YES manual up up SeriaiO/1 12.0.0.1__ YES manual up up R-I#tping 12.0.0.2 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos fo 12.0.0.2, timeout is 2 seconds: il Success rate is 100 percent (5/5), round-trip minfavg/max = 1/6/28 ms R-1 (config) #router ospf 1 R-I [config-router) #network 12.0.0.0 0.255.255.255 area 0 R-I [config-router] #end R-3 (config) #router ospf 3 R-3(config-router) #network 12.0.0.0 0.255.255.255 area 0 R-3(config-router] #end R-3itsh ip ospf neighbor Neighbor ID Pri State Dead Time Address __ Interface 192.168.2.100 0 FULL/- 00:00:39 1.0.0.1 Serial0/0 192.168.1100 0 FULL/- 00:00:33 12.0.0.1 Serial R-1#tsh ip route ospf © 1.0.0.0 [110/128] via 10.0.0.2, 00:00:57, Seriai0/0 [110/128] via 12.0.0.2, 00:00:57, Serial0/1 O 192.168.2.0 [110/65] via 10.0.0.2, 00:18:24, Serial0/0 OIA 192, 168.3.0 [110/65] via 12.0.0.2, 00:00:57, Serial0/1 R-I#traceroute 192.168.3.1 Type escape sequence fo abort. Tracing the route to 192.168.3.11 12.0.0.2 22msec 2msec 2msec 2 192,168.31 Imsec Imsec Omsec R-I (config) #interface serial 0/0 R-I (configif] #shutdown R-I (config-if) #exit R-1(config)#do sh ip ospf neighbor Neighbor ID. Pri State Dead Time Address __ Interface 192.168.3.100 0 FULL/- 00:00:33 12.0.0.2__Serial0/1 R-1(config)#do sh ip route ospf © 11.0.0.0 [110/128] via 12.0.0.2, 00:00:21, Serialo/1 O 192.168.2.0 [110/129] via 12.0.0.2, 00:00:21, Serial0/1 OIA 192.168.3.0 [110/65] via 12.0.0.2, 00:02:48, Serial0/1 R-I#traceroute 192.168.3.1 Type escape sequence fo abort. Tracing the route to 192.168.3.1 1 1200.2 2msec Omsec 4msec 2 192.168.3.1 Imsec Omsec 10 msec R-I##fraceroute 192.168.2.1 Type escape sequence fo abort. Tracing the route to 192.168.2.1 1 12.0.0.2 40msec 14msec 2msec 2 1 2msec Imsec 2msec 3 192,168.21 3msec 3msec | msec R-I (config) #interface s0/0 R-I (config-if) #no shutdown R-I[configcif) tend R-1itsh ip ospf neighbor Neighbor ID Pri State Dead Time Adaress __ Interface 192.168.2.100 0 FULL/- 00:00:38 10.0.0.2 —_Seriall0/0 192.168.3.100 0 FULL/- 00:00:32 12.0.0.2—Seriall0/1 R-1itsh ip route ospf © 1.0.0.0 [110/128] via 12.0.0.2, 00:00:26, SerialO/1 [110/128] via’ 10.0.0.2, 00:00:26, Serial0/0 © 192.168.2.0 [110/65] via 10.0.0.2, 00:00:26, Serial0/0 OIA 192. 168.3.0 [110/65] via 12.0.0.2, 00:04:21, Serial0/1 R-I#Hfraceroute 192.168.3.1 Type escape sequence fo abort. Tracing the route to 192.168.3.11 120.02 2msec Imsec 31 msec 2 192.168.3.1 12msec Imsec | msec R-1#traceroute 192.168.2.1 Type escape sequence fo abort. Tracing the route to 192.168.2.1 1 10.0.0.2 39msec Omsec Omsec 2 192,168.21 Omsec Imsec OmsecOSPFv2 INTERFACE SUB-COMMANDS OSPFv2 Interface Subcommands » The configuration used the OSPF network command can be confusing Difficult to gure out which interfaces enabled with OSPF > Clsco added another option for OSPFv2 configuration called OSPF interface configuration, > We use ip espf interface subcommand instead of using the network command in router configuration mode » You directly enable OSPFv2 on interfaces by configuring an interface subcommand on each interface. ToUESY OapF Rilcontig)W router ospf 1 Ri (conf ig-router) # #6) B@EMBE 20: 0.0 0.255.255.255 area 0 Bi (config-subif)# 4p ospf 2 area 0 Ri (configrasbif)# dneerface g0/0.2 Ri (configreubie)# 4p oepf 2 area 0 Ri (configraubif)# interface g0/0/0 ni (config-if) # Spleapeitiaxeallo Bi (config-router)# interface g0/0.1| network 10 network 10 network 10. network 19. 2.1 0.0.0.0 8aT0 2.1 0.0.0.0 #880 22.1 0.0.0.0 Se@aIas 23.1 0.0.0.0 SBRI2a 4.1 0.0.0.0 ESR Bi (config-if)# interface 90/1/0) Ri (config-if)# 4p ospé 1 art Ri (config-it)# interface g0/2/0 ° Ri (contig-it)# 4p ope 2 ar AreasOSPF v2 Interface Subcommands 1 = beginning Lines onictea tor brevity Routing for Networks: 10.2.0.0 0.0.255.255 area 0 Wa show Ap oopt intertace 0/0/0 Gigabitethernet0/0/0 is up, Line protocol is up internet Addr |= ending Line omitted for brevity ‘Area 23 ns out aime oat areas IV show Up protocols ‘Routing on Intertaces Contiqurea Explicitly (zea 0): ‘Gigabittehernet0/2/0 ‘cigabitzehernet0/2/0 ‘Gigabiemenernet0/0/0 ‘igabitsthernet0/0.2 igapiemtnerero/o, 10.1.12.1/24, Area 0, REESCHSGIVaINGEWSHEISESCGRERE PLY show 4p onpt Antertace 90/0/0 Gigabitatherneto/0/0 As vp, @ Internet Address 10.1.12.1/24, Area 0, NEES GESPASES BTS ne protocol | Lines onitted for brevityOSPF NETWORK TYPES TF 2A. OSPF Network Types Point-to-Point Router Router s ¢ Broadcast Multi Access OSPF Network ~ Broadcast Type NEA, OSPF by defo uses » Broadcast network type ‘on all types of Ethernet interfaces fa » Point to point network types on all sera linksOSPF Broadcast Network — Challenges NPA, » OSPF by default uses Broadcast network type on all types of Ethernet interfaces » In broadcast multi-access networks, we are faced by two challenges in an OSPF environment, Multiple adjacencies (Routers form neighbors all routers (same Broadcast Domain), Flooding of LSAs Possibility of the creating multiple LSU Loops ) OSPF Broadcast Network ~ DR/BDR NA. » In OSPF, these challenges are solved by electing the DR (designated Router and the BDR (Backup Designated Router) DR and BDR selection are required (loop Prevention Mechanism) » The DRVBDR election occurs during OSPF neighbor ship Specifically during the last phase of 2-Way neighbor state and just before the ExStart state. » All neighbor routers form full adjacencies with the DR and BDR only. » The DROther routers will never update other routers in the network.What if DR goes down 2 Mf 6 2A. > Ifthe DR fails, the BDR becomes the DR, and a new BDR Is elected. DR/ BDR- Elections NA, » The router having highest priority will become DR EE | DRather » The router with second-highest priority is BDR » The defauit priority value is 1 » In the case of a tie, Router with highest router ID is DR Second highest router ID becomes the BDR when Sarno honest maraseahtonnsem "Page 44DR/ BDR - Elections NA, Coe) Ee [roe Cony » The default priority value is 1 » In the case of a tle, Router with highest router ID Is DR Second highest router ID becomes the BDR DR/ BDR - Elections MOA, Coe) Ee oe) roe > Ifrouter priority iso it cannot become the DR or BDR » DR & BDR election is not preemptive ‘When a better router enters the subnet, no preemption of the existing DR or BDR occurs. If the router fails, other routers will become DR and BDR, and the best router will not be DR again until the current DR and BDR fail. when Sarno honest mearaseahtonssam® "Page 45OSPF Broadcast Network ~ Verfication NEA, » OSPF by default uses Broadcast network type on all types of Ethernet interfaces » Gigabit Ethernet interfaces on all four routers default to use network type broadcast Ritsh ip ospf neighbor Neighbor DP Stte Dead Time Address Interface yo002 1 2WAY/DROTHER onc0:31 10002 FastEthemeto/o yooos 1 FULL/BDR opens 10003 — FastEthemetoo yooos 1 FULL/DR —@n.0033 10004 FastEtherera/o Ressh ip ospf int fo/0 FastEthereto sup, fine protocol Is up Intemet Address 180048, Area 0 Process ID 1, Router ID 10.004, Network Type BROADCAST, Cost 1 Transmit Delay is 1 sc, State DR, Priovity Dealgnated Router (1D) 30.0.0 Inerce address 12.008 Backup Designated router (ID) 10003, Interface address 10003 Ra(confighrouter ospf 1 Indecent ionasensas al OSPF Broadcast Network Type MOA,, » OSPF by default uses Broadcast network type on all types of Ethernet interfaces > Gigabit Ethernet interfaces on all four routers default to use network type broadcast Rxiconfgherouter ospf 1 10.00.90.00.255 area Rrssh Ip ospf neighbor Lee el Nelghbor ID Pri State Dead Time Address Incerfice fo0e2, 1 aWAY/DROTHER co0031 10002 Fattherctoo e003 1 FULLODR —ceose 19003 FasiEihemeio yonos + FULUDR —opge38 19004 Fastthemeto Raésh ip ospf int foro FastEthermeto/0 sup, line protocol Is up Incernet Address 190.0478, Area o Process ID 1, Router ID 10.004, Network Type BROADCAST, Cost: 1 Transmit Delay is 1 sec, State DR, Priotty 1 Designated Router (ID) 100.04, Interface address 10.004 Backup Designated router (ID) 10.003, Interface address 10.003LAB: OSPF DR /BDR ELECTION OVER ETHERNET: TASK + Advertise The Interfaces using single area 0 defined As Per The Diagram Ritping 10.0.0.2 Type escape sequence to abort. zw”? 5, 100-byte ICMP Echos to 10.0.0.2, timeout is 2 seconds: Success rate is 80 percent (4/5), round-trip minfavg/max = 56/76/112 ms RI ping 10.0.0.3 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.0.0.3, timeout is 2 seconds: Success rate is 80 percent (4/5), round-trip min/avg/max = 56/88/136 ms Ri ping 10.0.0.4 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.0.0.4, timeout is 2 seconds: Success rate is 80 percent (4/5), round-trip min/avg/max = 64/87/100 ms On all routers Rx(config) #Router ospf 1 Rx(config-router] #Net 10.0.0.0 0.255.255.255 area 0 Rx(config-router) #end RI#tsh ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface 10.0.0.2 1 2WAY/DROTHER 00:00:31 0.0.0.2 Fastéthernet0/0 wns Saroeho, st nee mamraeeahitimssan Page 4710.0.0.3, 00:00:33 10.0.04 —_FastEthernet0/0 R4#tsh ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface 10.0.0.1 1 FULL/DROTHER 00:00:30 10.0.0.1 —_FastEthernef0/0 10.0.0.2 1 FULL/DROTHER 00:00:35 10.0.0.2 _Fastthemet0/0 10.0.0.3 1 FULL/BDR 00:00:31 10.0.0.3 —FastEthemet0/0 R2#tsh ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface 10.0.0.1 1 2WAY/DROTHER 00:00:34 0.0.0.1 FastEthernet0/0 10.0.0.3 1 FULL/BDR 00:00:35 10.0.0.3 —_FastEthernet0/0 10.0.0.4 1 FULL/DR 00:00:39 10.0.0.4 —Fastéthernet0/0 R4#sh ip ospf int f0/0 FastEthernet0/0 is up, line protocol is up Intemet Adatess 10.0.0.4/8, Area 0 Process ID 1 Cost: I Transmit Delay is | sec, Designated Router (ID) 10.0.0.4, Interface address 10.0.0.4 Backup Designated router (ID) 10.0.0.3, Interface address 10.0.0.3 R2#tsh ip ospf int f0/0 FastEthernet0/0 is up. line protocol is up Internet Adatress 10.0.0.2/8, Area 0 Process ID 1, Router ID 10.0. Designated Router (ID) 10.0.0.4, Interface adress 10.0.0.4 Backup Designated router (ID) 10.0.0.3, Interface adatess 10.0.0.3 Timer intervals configured, Hello 10. Dead 40, Wait 40, Retransmit 5 R3Htsh ip ospf int f0/0 FastEthernet0/0 is up, line protocol is up Internet Adatess 10.0.0.3/8, Area 0 Process ID 1, Designated Router (ID) 10.0.0.4, Interface adatress 10.0.0.4 Backup Designated router (ID) 10.0.0.3, Interface adatess 10.0.0.3 Timer intervals configured, Hello 10, Dead 40, Wait 40, Refransmit 5 TASK * Configure the appropriate routers to make RI as DR and R2 should be BDR. ‘+ R4 should never become DR and BDR RI (config) #int 10/0 RI (config-if] #ip ospf priority ? <0-255> Priority RI (config-i tip ospf priority 255 R2(config] #int 10/0R2(config-if tip ospf priority 254 R2(config-if] #end R4(config] #int 10/0 R4(config-i #ip ospf priority 0 On alll routers Rx##clear ip ospf process Reset ALL OSPF processes? [ROEIVes: R4ftsh ip ospf neighbor Neighbor ID Pri State Dead Time Address __ interface 10.0.0.3 1 2WAY/DROTHER 00:00:32 10.0.0.3 —FastEthemet0/0 RI#tsh ip ospf int f0/0 FastEthernet0/0 is up, line protocol is up Internet Address 10.0.0.1/8, Area 0 Process ID 1, Router ID 10.0. Designated Router (ID) 10.0.0.1, Interface adress 10.0.0.1 Backup Designated router (ID) 10.0.0.2, Interface address 10.0.0.2 Timer intervals configured. Hello 10, Dead 40, Wait 40, Refransmit 5OSPF - Advertising Default Routes Advertising Default Routes - OSPF Sikandar Shaik CDIEx3 (RS/SP)/SEC # 35012 Senior Technical Instructor Facebook.com/sikandar3a0l2/ Youtube.com/sikandarshaik Iwitter.com/sikandarecie Linkedin.com/in/sikandarshaik/ Www Noasolutions.comStatic Default Routing XA, » By Default, Router discard packet if not matches routes in the Routing table. > Routes uses default route if no specific route matches the Routing table, Used to route trafic for unknown destinations (internet) [configh# Epi Feuta|ov0v0s0/0v0/0N0e0/o/a 228 show ip route erat > Routers can be configured to use a statically configured or dynamically learned default route. Advertising Default routes- OSPF/EIGRP Se ik OD. 0) to Connect Internet for Brach Offices » ISP connecting to every branch » Default route on every router towards Head offic. » Advertise default route in OSPE/EIGRPOSPF - Default Route Advertisements NOA, OSPF supports advertising the default route into the OSPF domain. Seer ees Sm) ‘Scenario Exa h » Ry has a static default route to a firewall that is connected to the Internet. Pe egg? 0.0.00 100.64.1.2 » To provide connectivity to other parts ofthe network (for example, R2 and Rs), » Ri advertises a defaut route into OSPF. pons network 1.0.0.0 0.255.255.255 area 0 default information originate 0 abo tp conte | Doaln Gaterey 5F show ip rots | Begin Gatovay act resort ig 10.12L1 to netwotk 1.0.0.0 loateway of last resort is 10.23.1.2 (OPED 0,0,9.0/0 [20/1] via 10.23.1.2, 00: 10.0.0.0/8 ts vartaly subo ut 7, Gigabit stherneto/1 ted, 3 subuets, ? masks fora 0.0,0,0/0 (110/t) via 10.12.1615 €0:02:S6, GigabienteroetO/t 0.0.0.0 oie : Eee oa a 10.23.1.2, (08:20, lgebttberetd 10.29.1074 ts ircty commered,sigittieres2 | |F 1 sugett OSPF - Default Routes — Lab Setuy NA, Ri(configh*Router ospf 1 Ri(config-routeryNetwork 1.0.0.0 0.255.255.255 area 0 Ri(config-routery#Network 10.0.0.0 0.255.255.255 area o Ro(configh*Router ospf 1 Ra(config-routery#Network 1.0.0.0 0.255.255.255 area 0 Re(config-routery’Network 20.0.0.0 0.255.255.255 area o Re(config-routerwexit Ra(confight ip route 1.0.0.0255.0.0.02.221 Ra(configh ip route 10.0.0.0 255.0.00 2.2.2.1 RRS Rx(config)s router ospf1 Rx(config-router }+ network 2.0.0.0 0.255.255.2550 area 0 Ra{configh Ip route 0.0.0.0 0.OSPF - Default Routes - Configuration XEA,, Configure The R2 To Provide Reachability To Internet Routes ( 13.0.0.) By Advertising The Default Route In OSPF Ro(configisrouter ospf 1 Ro(config-router)s_default-nformation originate Rissh ip route ospf © 2000078 110/65 via 11.1.2, 0-07.08, Serialt/0 (O*E2 0.0.00/0{1 10/1 via 1.112 0:07:09, Serial Risping 13.0.0.1 Rietraceroute 13.0.0.1 Type escape sequence to abort. ‘Type escape sequence to abort Sending 5, 1oobyte ICMP Echos to 130.01, timeout is 2 seconds: Tracing the route 0 13.001 Suecess rate Is 100 percent (5/5, round-trip min/avgma - 498/292 ms 11.12. 68 msee 152 msec 4 msec OSPF — Default Information Originate Always NA, By default in OPSF Without a default route In the routing table, > the default-information originate command will not advertise to any other routers » (The dependency is that the router has to already have a default route, before he shares one with others. (Rientomne te romeonse onee2223,] Rissh Ip route ospf © 290.0078 110/65) via 1.1.12, co0r-05, Serlavo Rush ip route ospf (© 20000/8 110/65) via 1.1.12, 0007-0, Serlal/0 (0*E20.00.0°0{11071} va 11.1.2, 00:07.09, Serialio Ra(configrouter ospft Ra{config-router)# _default-information originate always ‘The always keyword, when added, it > tells to the router, " advertise a default route to other routers , even if you yourself don’t have one".OSPF Default Route — Metrics PA,, By default in OPSF default route uses > Metric (Cost) = > Metric-type Ritsh ip route ospf © 200.00/8 110/65) via 1.7.12, 07-08, Serio (©*E20.00.0/0 110/11 via 1.1.12, 00:07:09, Serio ‘Ra(confighrouter ospf 1 Ra{config-router}# default-information originate always metric-type 1 Metric 100, Rissh ip route ospf > OFEr 00.0.0/0 [110/164] via 1.1.1.2, 0000-2, Seriali/o > 20.0.0.078 110/65 va 1.1.1.2, 01:17:34, Sefal/o OSPF Default Routes — with NAT XA, ‘Configure R2 with NAT to translate all branch office networks & Head office LAN, to translate with Public IP of on the exit interface (S1/1 ~ 2.2.21) Ra(confightip accesstist standard NAT_TR Ro(config-std-nacl}spermit 10.0.00 0.285.255.255 Ra(config-std-nacl)4permit 20.0.00 0.255.255.255 Ra(config-std-nacl permit 1.0.0.0 0.255.255.255 Ra(config-std-nachyexit _—_____ _# Gas SNA Ra(configyrint 1/0 Ra(configyrip nat inside source list NAT_TR interface s1/1 overtoad Raconfig'fsip nat inside RatconfigiNeexit oR | Falcons 70 | a(contgsip nat inside R2(config)tip nat pool PUB_IP 50.1.1.1 50.1.1.1 netmask 255.255.255.252 Re(config-ivexit Raconfightip nat inside source list NAT_TR pool PUB_IP overload Re(configyint 51/1 Ra configsip nat outside wsson i sans, es wmaamantonasom "page 58LAB : DEFAULT ROUTES IN OSPF HEAD OFFICE 13.0.0.1/28 \ oo || 13.0.1.1/24 2, (| 13.0.211/26 13.0.3.4/24 | OSPF area 0 TASK © Remove The Rip And Redistributuion Configured In The Previous Lab R2(config-router) #ne router rip R2(config) #no ip route 0.0.0.0 0.0.0.0 2.2.2.2 RI (config-router) #no router rip TASK «Advertise the interfaces as per the diagram using ospf + Configure a default route on 2 (head office )to provide reachability to intemet routes (13.0.0.0, 30.1.1.1 networks ) RI (config) #Router ospf 1 RI (config-outer) #Network 1.0.0.0 0.255.255.255 area 0 RI (config-router) #Network 10.0.0.0 0.255.255.255 area 0 R2(config) #Router ospf 1 R2{config-outer) #Network 1.0.0.0 0.255.255.255 area 0 R2(config-router) #Network 20.0.0.0 0.255.255.255 area 0 R2(config-router) texit R2(config)# ip route 0.0.0.0 0.0.0.0 2.2.2.2 R3(config)#ip route 1.0.0.0 255.0.0.0 2.2.2.1 R3(config)#ip route 10.0.0.0 255.0.0.0 2.2.2.1 Here we are using default routing towards ISP ( from R2 fo R3) and static routing from ISP (from R3 fo R2) R2#tsh ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface whe serene hontai mearaeseahtonnsem® Page 5511.0.3. 0 FULL/- 00:00:39 1.1.1.1 Serial /O R2itsh ip route Gateway of last resort is 2.2.2.2 to network 0.0.0.0 1.0.0.0/8 is directly connected, Serial! /O 2.0.0.0/8 is directly connected, Serial! /I 20.0.0.0/8 is directly connected, Fastéthemet0/0 10.0.0.0/8 {1 10/65] via 1.1.1.1, 00:01:08, Serial /O 12.0.0.0/24 is subnetted, 4 subnets 12.0.0.0 is directly connected, Loopback0 12.0.1.0 is directly connected, Loopback! 12.0.2.0 is directly connected, Loopback2 CC 12.0.3.0is earcannected, Leopbacks RIftsh ip route Gateway of last resort is not set 0.0/8 is directly connected, Serial! /O 9909 onN0 10.0.0.0/8 is direcily connected, FastEthemet0/0 11.0.0.0/24 is subnetted, 4 subnets 11.0.3.0 is directly connected, Loopback 11.0.2.0 is directly connected, Loopback2 11.0.1.0 is directly connected, Loopback! 11.0.0.0 is directly connected, Loopback0 a000 4 R-2#ping 13.0.0.1 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos to 13.0.0.1, timeout is 2 seconds: Success rate is 100 percent (5/5), round-trip min/avg/max = 8/22/36 ms R-2#ping 30.1.1.1 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos to 30.1.1.1, timeout is 2 seconds: Success rate Is 100 percent (5/5), round-trip min/avg/max = 20/31/52 ms R-T#ping 13.0.0.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 13.0.0.1, timeout is 2 seconds: From the above outputs * we can see (R2)Head office can reach internet routes ( 13.0.0.0 and 30. 1.1.1) + Noroutes for 13.0.0.0 in the routing table of RI * the branch office ( RI) cannot reach internet routes ( 13.0.0.0 and 30.1.1.1) as there isno default route as well configured for intemet on RIIn order to Provide intemet reachability for all the branch offices (RI) fo reach internet routes via Head office there are different methods to do 1. Adveritise the default route in OSPF using default-information originate command 2. Reaistruting default route in to OSPF TASK: * Configure The R2 To Provide Reachability To Internet Routes ( 13.0.0.0) By Advertising The Default Route In OSPF 2 (config) #router ospf 1 R2(config-outer) # default-information originate R1#sh ip route ospf © 2.0.0.0/8 [110/128] via 1.1.1.2, 00:07:09, Serial /0 O _20.0.0.0/8 [110/65] via 1.1.1.2, 00:07:09, Seriall /0 Ri ping 13.0.0.1 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos to 13.0.0.1, tineout is 2 seconds: |, eee round-trip minfava/max = 4/98/292 ms Rifffraceroute 13.0.0.1 Type escape sequence fo abort. Tracing the route to 13.0.0.1 R2(config) #router ospf 1 R2{(config-router) # default-information originate always R2(config-router) #exit 2 (config) #H@ip FOUIE 0.0.0.0 0:0.0:0 2.2.2.2 R2itsh ip route Gateway of last resort is not set C 1.0.0.0/8 is directly connected, Serial! /0 C 2.0.0.0/8 is directly connected, Seriall /1 CC 20.0.0.0/8 is directly connected, FastEthemet0/0 © 10.0.0.0/8 [110/65] via 1.1.1.1, 00:10:20, Seriall /0 12.0.0.0/24 is subnetted, 4 subnets C 12.0.0.0s directly connected, Loopback0 C 12.0.1.0is directly connected, Loopback! C — 12.0.2.01s directly connected, Loopback2 C — 12.0.3.0is directly connected, Loopback3 Rl#sh ip route ospf © 2.0.0.0/8 [110/128] via 1.1.1.2, 00:10:37, Seriall /0 © 20.0.0.0/8 [110/65] via 1.1.1.2, 00:10:37, Seriall /0By default in OPSF Without a default route in the routing table, the default-information originate ‘command will not advertise to any other routers [The dependency is that the router has to already have a default route, before he shares one with others.) The always keyword, when addled, if tells to the router, "advertise a default route to other routers even if you yourself don't have one’. This should be a wellknown fact (and it's obliquely described in IOS documentation) - if youre redistributing a default route info OSPF (for example, you have a static default route configured with ip route 0.0.0.0 0.0.0.0 ... and you use redistribute static subnets within the OSPF process), the default route will nof be entered into the OSPF database unless you configure default-information originate within the router ospf configuration.OSPF Virtual Links Area Design Rules NA, Area 0 — Backbone Area At least one ABR TT Area Design - Possible Solutions Extended area 20 os Ss + Connect physical link from area 0 to new Area Configure Virtual-link Area 20 STOSPF Virtual-link MOA. TT OSPF Virtual Link NPA, Virtual links are used to connect a dis-contiguous area to area 0 2 A logical connection is built between routers SET) SrOSPF Virtual Link - configuration NA Ri(config)srouter ospft Ri(config-router)wrouter-id 11.1.1.1 + Identify the virtual Area (area 20) + Identify the border routers of virtual Area (R1/R3) + Router-id of border routers (manual) (configh'router ospf 1 fig-router)trouter-id 33.3.3.3 OSPF Virtual Link - configuration NEA, Rassh ip route ospf 1A 3.0.0.0/8 [110/128] via 2.2.2.2, 00:11:46, Serlalt/1 OIA © 10.0.0.0/8 {110/65} via 1. (0.0/8 110/129] via 2.2.2.2, 00:11:20, Serialt/1 1, 00:11:46, Serial1/0 14.0.0.0/32is subnetted, 4 subnets OIA OIA OIA OA © 30.0.0.0/8 [110/65] via 2: 11.0.0 network not advertised by Ri Belong to Area 10 not connecting to Area 0 14.0.3.1 [110/128] via 2.2.2.2, 00:11:10, Serialt/1 14.0.2. [110/129] via 2.2.2.2, 00:11:10, Serialt/1 14.0.1.1 [110/129] via 2.2.2.2, 00:1 14.0.0. [110/129] via 2.2.2.2, 00:1OSPF Virtual Link - configuration NA, Ri(confightrouter ospf 1 Ru(config-router)#area 20 virtuablink 33.3.3.3 Ra(confightrouter ospf 1 Ra(config-router)#area 20 virtuablink 1.1.1.1 Ratsh ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface maat 0 FULY- —-1at.a—OSPEVLo vwos1 0 FULL’ - 313332 Serlalort nmoa1 0 FULL’-—opaos4 22.21 SerialoroLAB : OSPF VIRTUAL-LINKS ey fice no) toornacl 11.0.0.1/24 RI 11.0.1.1/24 11.0.2.1/24 11.0.3.1/24 TASK Remove the prevoius lab routing configurations if any. + Advertise The Interfaces using multilple areas defined As Per The Diagram * Configure the manual router id (RI - 1.1.1.1, R3= 33.3.3.3) © Make sure that the loopback of RI (1.0.0.0) routes should be seen on all the other roufers. On all routers Rx(config)##No ip routing Rx(config) #Ip routing RI cont #router ssi R1 (config-router} #nefwork 1.0.0.0 0.255.255.255 area 10 RI (config-router) #nefwork 1.0.0.0 0.255.255.255 area 20 R1(config-router) #nefwork 10.0.0.0 0.255.255.255 area 20 R2(config) #router ospf 1 R2(config-router) #network 20.0.0.0 0.255.255.25 area 20 R2(config-router) #network 2.0.0.0 0.255.255.255 area 20 R2(config-router) #network 1.0.0.0 0.255.255.255 area 20 R2(config-router] #network 12.0.0.0 0.255.255.255 area 20 OR R2(config) #router ospf 1 R2{config-router) #network 0.0.0.0 0.0.0.0 area 20 R3(config) #router ospf I when Saris onsasi marassahtonesam® Page 65#router-id 33.3.3.3 # network 2.0.0.0 0.255.255.255 area 20 # network 30.0.0.0 0.255.255.255 area 20 # network 3.0.0.0 0.255.255.255 area 0 R3(config-router) 3 (config-router) 3 (config-router) R3(config-router) BR 4 (config) #router ospf 1 R4(config-router] #network 0.0.0.0 0.0.0.0 area 0 Or R4(config) #router ospf 1 R4(config-outer) #network 40.0.0.0 0.255.255.255 area 0 R4(config-router) #network 3.0.0.0 0.255.255.255 area 0 R4(config-router) #network 3.0.0.0 0.255.255.255 area 0 R4(config-router) #network 14.0.0.0 0.255.255.255 area 0 R2itsh ip route ospf O1A 3.0.0.0/8 [110/128] via 2.2.2.2, 00:11:46, Seriall/1 O1A 40.0.0.0/8 [110/129] via 2.2.2.2, 00:11:20, Seriall /1 © 10.0.0.0/8 [1 10/65] via 1.1.1.1, 00:11:46, Serial /0 14.0.0.0/32 is subnetted, 4 subnets OIA 14.0.3.1, [110/129] via2.2.2.2, 00:11:10, Serial /1 OIA 14.0.2.1 [110/129] via 2.2.2.2, 00:11:10, Seriali /1 OIA 14.0.1.1 [110/129] via 2.2.2.2, 00:11:10, Serial /1 OIA 14.0.0.1 [110/129] via 2.2.2.2, 00:11:10, Seriali /1 © 30.0.0.0/8 [1 10/65] via 2.2.2.2, 00:11:46, Seriall/1 R3itsh ip route ospf © 1.0.0.0/8 [110/128] via 2.2.2.1, 00:11:05, Seriall /O © 20.0.0.0/8 [110/65] via 2.2.2.1, 00:11:05, Seriall /0 © 40.0.0.0/8 {1 10/65] via 3.3.3.2, 00:10:28, Seriall/1 © 10.0.0.0/8 [110/129] via 2.2.2.1, 00:11:05, Serial /0 12.0.0.0/32 is subnetted, 4 subnets © 12.0.1.1 [110/65] via 2.2.2.1, 00:11:05, Seriall /O © — 12.0.0.1 [110/65] via 2.2.2.1, 00:11:05, Serial /O O — 12.0.3.1 [110/65] via 2.2.2.1, 00:11:05, Serial! /O © 12.0.2.1 [110/65] via 2.2.2.1, 00:11:05, Serial /0 ° ° ° 14,0.0.0/32 is subnetted, 4 subnets 14,0.3.1 [110/65] via 3.3.3.2, 00:10:28, Seriall /1 14,0.2.1 [110/65] via 3.3.3.2, 00:10:28, Seriall /1 14,0.1.1 [110/65] via 3.3.3.2, 00:10:28, Serial! /1 O — 14.0.0.1 [110/65] via 3.3.3.2, 00:10:28, Serial! /1 Rd#sh ip route ospf OIA 1.0.0.0/8 [110/192] via 3.3.3. 1, 00:00:13, Serial0/0 1A 2.0.0.0/8 [110/128] via 3.3.3. 1, 00:00:13, Serial0/0 OIA 20.0.0.0/8 [110/138] via 3.3.3.1, 00:00:13, SeriaiO/0 OIA 10.0.0.0/8 [110/202] via 3.3.3.1, 00:00:13, Seriai0/O 12.0.0.0/32 is subnetted, 4 subnets OIA 12.0.1.1 [110/129] via 3.3.3.1, 00:00:13, SeriaiO/0 OIA 12.0.0.1 [110/129] via 3.3.3.1, 00:00:13, Serial0/0 OIA 12.0.3.1 [110/129] via 3.3.3.1, 00:00:13, Serial0/0OIA 12.0.2.1 [110/129] via 3.3.3.1, 00:00:13, Serial0/0 OIA 30.0.0.0/8 [110/74] via 3.3.3. 1, 00:00:13, Serial0/0 No routes from 11.0.0.0 coming in to routing table of R2, R3, R4_ as it belongs to area 10 which is not directly connected to area 0 in order to make sure that the loopback of RI ( 1.0.0.0) routes should be seen on all the other routers we need fo configure virtual-link which allows area 10 fo area 0 virtually over area 20 (virtual area) RI#Sh ip protocols Routing Protocol is ospf 1" Outgoing update fitter ist for all interfaces is not set Incoming update filter lst for all interfaces is not set R3 # Ship protocols Routing Protocol is "ospf 1" Outgoing update fitter list for all interfaces is not set ‘oom yeaa filter list for ail interfaces is not set Note : * Verify routerID before you configure virtual link.as it is dependent on Router — ID ( preferable manual Router-ID as it will not change } © virtual link through area 20 and from Ril to R3 (33.3.3.3 router-id of remote border router R3) RI (config)#router ospf 1 RI (config-router)#tarea 20 virtual-link 33.3.3.3 virtual link through area 20 and from R3 to RI (11.1.1.1. router-id of remote border router R1) R3(config)#router ospf 1 R3(config-router) #area 20 virtual-link 1.1.1.1 R3#tsh ip ospf neighbor ero Pri State Dead Time Address _ Interface 14.0.3.1 0 FULL/- 00:00:31 3.3.3.2 Serial0/1 12.0.3.1 0 FULL/- 00:00:34 2.2.2.1 — Serial0/0 R1#sh ip ospf neighbor Neighbor ID Pri State Dead Time Address _ Interface 12.0.3. 0 FULL/- 00:00:36 1.1.1.2 Serial0/0 R4#tsh ip route ospf O1A 1.0.0.0/8 [110/192] via 3.3.3.1, 00:13:26, Serial0/0 O1A 2.0.0.0/8 [110/128] via 3.3.3. 1, 00:13:26, Serial0/0 O1A 20.0.0.0/8 [110/138] via 3.3.3.1, 00:13:26, Serial0/0 OIA 10.0.0.0/8 [110/202] via 3.3.3.1, 00:03:25, Seriai0/0.0.0.0/32 is subnetted, 4 subnets OIA 12.0.1.1 [110/129] via 3.3.3.1, 00:13:26, SerialO/0 OIA 12.0.0.1 [110/129] via 3.3.3.1, 00:13:26, Serial0/0 OIA 12.0.3.1 [110/129] via 3.3.3.1, 00:13:26, Serial0/O OIA 12.0.2.1 [110/129] via 3.3.3.1, 00:13:26, Serial0/0 O1A 30.0.0.0/8 [110/74] via 3.3.3. 1, 00:13:26, Serial0/0 noe irtval-links Run as demand circuit DoNotAge LSA allowed. Transit area 20, via interface Seriall /0, Cost of using 128 Transmit Delay is | sec, State POINT_TO_POINT, Timer intervals configured, Hello 10, Dead 40, Wait 40, Refransmit 5 Hello due in 00:00:02 Adjacency State FULL (Hello suppressed) Index 1/2, retransmission queue length 0, number of retransmission 0OSPF Link State Advertsements (LSA) OSPF LSA types LSA Type Description Sa a 2 Network LSAs 3or4 Summary LSAs 5 ‘Autonomous system external LSAs 6 Multicast OSPF LSA. 7 Defined for not-so-stubby areas 8 External attributes LSA for Border Gateway Protocol (BGP) 9,10, 11 ‘Opaque LSAs LSA Type 1: Router LSA J | OA, » Generated by the internal router. » "O” routes in the routing table » Floods within its area only; does not cross ABRLSA Type 2: Network LSA MOA. » broadcast networks uses LSA-2 » Advertised by the DR > DR-other » Floods within its area only; does not cross ABR » "0" routes LSA Type 3: Summary LSA. NOA eTWORR ONE ACADBAY » Advertised by Area border Router (ABR) » Exchanging updates between Areas ( OIA routes) » Regenerated by subsequent ABRsLSA Type 4: Summary LSA NGA, S » regenerated by all ABRs to flood throughout the autonomous system. » Type 4 LSAs contain the router ID of the ASBR. LSA Type 5: External LSA NA, SET) TT » Redistributed in to OSPF » Advertised and owned by the originating ASBR. » Flooded throughout the entire autonomous system. » Advertising router ID (ASBR) is unchanged throughout the autonomous system. » Type 4 LSA is needed to find the ASBR.LSA- 6 Multicast OSPF LSA NA. » used in multicast routing (MOSPF routing protocol) » Multicast LSA (Cisco routers don’t support ) LSA-7 - (NSSA) LSA. MOA. » Advertises routes in another routing domain. Generated by an ASBR » within a not-so-stubby area. © Ni-metric increases as it is passed through the network. » N2-metric does not increase (default). }—192.168.1.024-—| }-192.168.0.0724-4 }-192.1682.024-4LSA 8 External attributes LSA. + Used in OSPF and BGP interworking. LSA 9,10,11 Opaque LSAs. + Used for specific applications, such as OSPF and MPLS interworking.OSPF STUBS OSPF STUBS MOA. » Helps in minimizing size of routing table on edge routers » Uses default route to ABR to communicate with external & OIA routes » Reduces number of LSA with in the Area » Reduces Memory & CPU resources. OSPF issues — Big networks XA, » routing table more bigger for access routers ( run out of memory) > Increases number of advertisements ( LSA)OSPF Stubs Areas MOA. » Area 30 — Stub » Stop external LSA (E1/E2) — Replace with single default route ( O*1A) Stub Areas ncruom OA, aa atl--L essa Exter 3 » External LSAs are stopped ( £1 and E2 routes) » Default route is advertised into stub area by the ABR » All routers in stub area must be configured as stubStub Area Rules — Areas cannot be Stub » Area 0 — cannot be stub ( as its transit Area ) » Area with ASBR » Area configured with virtual-link. Treat ead wea? Stub Area Rules — Areas cannot be Stub NA, 7 » Area configured with virtual-link.OSPF stub : Configuration OA. ‘On all routers of Area 10 (R1/R2/R3) Rx(configh'router ospf 1 Rx(configerouter)earea 10 stub OSPF Totally Stub NA. » Area 30 — totally stub » Stop external LSA (E1/E2) + OIA — Replace with single default route ( O*1A)Totally Stubby Areas MOA, Defautt » Stop external LSA (E1/E2) + OIA — Replace with single default route (O*1A) » Reduces the size of routing table. Totally Stubby Areas : configuration All routers of Area excluding ABR (R1/R2) Router(config)trouter ospf 1 Router(config-router)iarea 10 stub (Only on ABR (R3) Router(configyrrouter ospf 1 Router(config-routerarea 10 stub no-summaryKi sts | 7 eae oO we shy ven (e1fh2) oy < Sige arnt \ Jer SAT, <8 fobs sss ge Bia SAS shopLAB: OSPF STUBS LooPBAcKs™~ 12.0.0.1/24 12.0.1.1/24 12.0.2.1/24 S 12.0.3.1/24 % / So PBACKS = 1.0.0.1/24 4 11.0.1:1/24,° 5 / 11.0.2.1/24) RO aao.21j24 | ~ — — \\ 14:0.3:1/24 / \3 o TASK Remove the prevoius lab routing configurations * Advertise the interfaces defined as per the diagram © __ Redistrubite rip routes in fo ospf on R4 On all routers Rx(config) #No ip routing Rx[config) #lp routing R1 (config) #router ospf 1 RI (config-router) #net 10.0.0.0 0.255.255.255 area 10 RI (config-outer) #nef 1.0.0.0 0.255.255.255 area 10 RI (config-router) #net 11.0.0.0 0.255.255.255 area 10 R2(config) #router ospf 1 R2(config-router) # network 1.0.0.0 0.255.255.255 area 10 R2(configrouter) # network 20.0.0.0 0.255.255.255 area 0 R2{(config-router) # network 2.0.0.0 0.255.255.255 area 0 R2(config-router) # network 12.0.0.0 0.255.255.255 area 0 R2{config-router) # R3 (config) #router ospf 1 R3{config-outer) # network 2.0.0.0 0.255.255.255 area 0 R3{config-router) # network 13.0.0.0 0.255.255.255 area 0 R3(config-router) # network 30.0.0.0 0.255.255.255 area 0 R3{config-router) # network 3.0.0.0 0.255.255.255 area 20 when saroeio, sh nse mamrameahitimssa Page 78R3(config-router) tend R4(config) # router rip RA(config-outer) # ver 2 R4(config-router) # network 14,0.0.0 R4(config-outer) # no auto-summary Ré(config-outer) #exit R4(config) #router ospf 1 R4(config-router) # network 3.0.0.0 0.255.255.255 area 20 R4(config-router) # network 40.0.0.0 0.255.255.255 area 20 R4(config-outer) # redistribute rip subnets RA(config-router) # exit RI#tsh ip route ospf O1A 2.0.0.0/8 [110/128] via 1.1.1.2, 00:02:56, SerialO/O O1A 3.0.0.0/8 [110/192] via 1.1.1.2, 00:01:54, Serial0/0 OIA 20.0.0.0/8 [110/74] via 1.1.1.2, 00:03:04, Serial0/0 O1A 40.0.0.0/8 [110/202] via 1.1.1.2, 00:01:13, Seriai0/O 12.0.0.0/32 is subnetted, 4 subnets OIA 12.0.1.1 [110/65] via 1.1.1.2, 00:02:56, SeriaiO/0 OIA 12.0.0.1.[110/65] viorI.1.1.2, 00:02:56, Serial0/0 OIA 12.0.3.1 [110/65] via 1.1.1.2, 00:02:56, SerialO/0 OIA 12.0.2.1 [110/65] via 1.1.1.2, 00:02:56, Serial0/0 13.0.0.0/32 is subnetted, 4 subnets OIA 13.0.0.1 [110/129] via 1.1.1.2, 00:02:04, SerialO/O OA 13.0.1.1 [110/129] via 1.1.1.2, 00:02:04, SerialO/0 OVA 13.0.2.1 [110/129] via 1.1.1.2, 00:02:04, Serial0/0 OVA 13.0.3.1 [110/129] via 1.1.1.2, 00:02:04, SerialO/O 14.0.0.0/24 is subnetted, 4 subnets OIA 30.0.0.0/8 [110/138] via 1.1.1.2, 00:02:04, SeriaiO/0 R2#tsh ip route ospf OA 3.0.0.0/8 [110/128] via 2.2.2.2, 00:01:12, Seriall/1 O1A 40.0.0.0/8 [110/129] via 2.2.2.2, 00:00:07, Serial /1 © 10.0.0.0/8 {110/65} vie 1.1.1.1, 00:01:22, Serialt /0 11.0.0.0/32 is subnetted, 4 subnets © 1.0.2.1 [110/65] via 1.1.1.1, 00:01:22, Serial /O © 1.0.3.1 [110/65] via 1.1.1.1, 00:01:22, Serial! /O © 1.0.0.1 [110/65] via 1.1.1.1, 00:01:22, Serial! /O © _ 1.0.1.1 [110/65] via 1.1.1.1, 00:01:22, Seriall /0 13.0.0.0/32 is subnetted, 4 subnets © — 13.0.0.1 [110/65] via 2.2.2.2, 00:01:12, Serial /1 ° ° ° ° 13.0.1.1 [110/65] vie 2.2.2.2, 00:01:12, SerialI/1 13.0.2.1 [110/65] vie 2.2.2.2, 00:01:12, Seriall/1 13.0.3.1 [110/65] via 2.2.2.2, 00:01:12, Seriall/1 14.0.0.0/24 is subnetted, 4 subnets £2 14.0.2.0 [110/20] via 2.2.2.2, 00:00:02, Serial /1EZ 14.0.3.0 [110/20] via 2.2.2.2, 00:00:02, Serial! /1 OEZ 14.0.0.0 [110/20] via 2.2.2.2, 00:00:02, Serial! /1 OE2 14.0.1.0 [110/20] via 2.2.2.2, 00:00:02, Serial /1 © 30.0.0.0/8 [110/65] via 2.2.2.2, 00:01:12, Serial /1 Riffping 14.0.0.1 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos to 14.0.0.1, timeout is 2 seconds: Success rate is 100 percent (5/5), round-trip min/avg/max = 112/221/304 ms TASK * Configure area 10 to stop LSA 5 and LSA 4 * Make sure that the area 10 routers still able to reach the external routes In oder to ensure that no external routes should enter in fo area 10 we need to configure area 10 as stub here .On all the routers of the ospf area 10 ( R1,R2) the below command has to configured On R18 RZ RI (config) #router ospf 1 RI (config-router) area 10 stub R2(config) #router ospf 1 R2(config-outer) #area 10 stub R2#sh ip ospf neighbor Neighbor ID Pri State Dead Time Address _ interface 13.0.3.1 0 FULL/- 00:00:33 2.2.2.2 — Seriall/1 - 00:00:37. 1.1.1.1 Serialt/o RI#sh ip route ospf OIA 2.0.0.0/8 [110/128] via 1.1.1.2, 00:00:11, Serialo/o O1A 3.0.0.0/8 [110/192] via 1.1.1.2, 00:00:11, Serialo/o OIA 20.0.0.0/8 [110/74] via 1.1.1.2, 00:00:11, Serial0/0 © 1A 40.0.0.0/8 [110/202] via 1.1.1.2, 00:00:11, Serial0/0 12.0.0.0/32 is subnetted, 4 subnets OIA 12.0.1.1 [110/65] via 1.1.1.2, 00:00:11, SerialO/0 OIA 12.0.0.1 [110/65] via 1.1.1.2, 00:00:11, SerialO/0 OVA 12.0.3.1 [110/65] via 1.1.1.2, 00:00:11, SeriaiO/0 OIA 12.0.2.1 [110/65] via 1.1.1.2, 00:00:11, Serial0/0 13.0.0.0/32 is subnetted, 4 subnets OVA 13.0.0.1 [110/129] via 1.1.1.2, 00:00:11, SerialO/O OIA 13.0.1.1 [110/129] via 1.1.1.2, 00:00:11, Serial0/0 OIA 13.0.2.1 [110/129] via 1.1.1.2, 00:00:11, SerialO/0 OIA 13.0.3.1 [110/129] via 1.1.1.2, 00:00:11, Serial0/0 O1A 30.0.0.0/8 is 10/138] via J.1.1.2, 00:00:11, Seriaio/O Ri ping 14.0.0.1 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos to 14.0.0.1, timeout is 2 seconds:wt Success rate iSOOPErESRE(S /5), round-trip minfavg/max = 12/145/324 ms R2#sh ip route ospf 0 1A 3.0.0.0/8 (1 10/128} via 2.2.2.2, 00:00:55, Serial /1 © 4.0.0.0/8 [110/128] via 1.1.1.1, 00:00:55, Serial! /O OIA 40.0.0.0/8 [110/129] via 2.2.2.2, 00:00:55, Seriall /1 © 10.0.0.0/8 [110/65] vie 1.1.1.1, 00:00:55, Serial /0 11.0.0.0/32 is subnetted, 4 subnets 11.0.2.1 [110/65] via 1.1.1.1, 00:00:55, Serial /O 11,0.3.1 [110/65] via 1.1.1.1, 00:00:55, Serial! /0 11.0.0.1 [110/65] via 1.1.1.1, 00:00:55, Serial1/O 1.0.1.1 [110/65] via 1.1.1.1, 00:00:55, Serial! /0 13.0.0.0/32 is subnetted, 4 subnets 13.0.0.1 [110/65] via 2.2.2.2, 00:01:10, Serial /1 13.0.1.1 [110/65] via 2.2.2.2, 00:01:10, Seriall /1 13.0.2.1 [110/65] via 2.2.2.2, 00:01:10, Seriall /1 13.0.3.1 [110/65] via 2.2.2.2, 00:01:10, Serial /1 14.0.0.0/24 is subnetted, 4 subnets 0000 0900 © 30.0.0.0/8 [110/65] via 2.2.2.2, 00:01: ), Serial /1 + inthe above output all external routes replaces with a single default route and stil you can reach external routes on Ré The Border router will have specific routes (NO default route on border router }LooPBAcKs™~ 12.0.0.1/24 12.0.1.1/24 Y Z LooPpack’s )PBACKS 2%, 1300.17: 40.01/24 5 ‘23% 13.0.1:1/ 11.0.1.1/24,55 2) 13.0.2.1/24 J 110.2:1/24 © 13.0.3.1/34 RO aao.2ij24 | ~ — — \ 14:0.3:1/24 / \s w TASK: * This Lais continuation of the previous lab Configurations ( where Totally Stub is configured) * Remove the previous lab configs to move to next task On RI&R2 RI (config) #router ospf 1 RI (config-outer) #NO area 10 stub R2{config) #router ospf I R2(config-router) # NO area 10 stub TASK * Configure area 10 to stop LSA 5, LSA4 and LSA 3 routes ( E1/E2 , OIA) + Make sure that the area 10 routers still able to reach the external routes and ospf inter area routes In oder to ensure that no external routes and OIA routes should enter in fo area 10 we need fo configure area 10 as totally stub here R1#sh ip route ospf when Saroninshonscai maraeahtonssam® "Page 62TO Configure area 10 totally stub Only on Area border router of area 10 ( R2) R2(config) #router ospf 1 R2(config-router) #area 10 stub no-summary Qn alll the internal routers_of area 10 (R1) (except ABR RI (config) #router ospf 1 RI (config-router) tarea 10 stub RIftsh ip route C 1.0.0.0/8 is directly connected, Serial0/0 C 4.0.0.0/8 is directly connected, Seriai0/1 CC 10.0.0.0/8 is directly connected, Fastéthemet0/0 11.0.0.0/24 is subnetted, 4 subnets C 1.0.3.0 directly connected, Loopback3 C 11.0.2.0is directly connected, Loopback2 C 11.0.1.0is directly connected, Loopback! C__ 11.0.0.0is cea connected, sees R1fsh i route cis All external { E1/E2) and OIA routes replaced with single default route and you maintain connectivity still at a cost of reducing the size of routing table. Ri #ping 14.0.0.1 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos fo 14.0.0.1, timeout is 2 seconds: HH Success rate is 100 percent (5/5), round-trip min/avg/max = 72/174/364 ms Rifping 30.1.1.1Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos to 30. 1.1.1, timeout is 2 seconds: mH Success rate is 100 percent (5/5), round-trip min/avg/max = 16/R1/292 msLAB 2: OSPF STUB AND TOTALLY STUB 7 LooPsAcKs: — 22 wo0s/2 ~~ 3 igo..i/ae . 942.0.2.1/24 Goats \ LOOPRACKS 11.0.0.1/24 \ Woaa/ae ote 11.0.2.1/24 “250 ror / 1.0.3.1/24.099 ns Zga01t3/8/ = 111/8 a oe \ 2 a ‘> Loopmacxs » — 13.0.0.1/24 \ att 13.0.1.1/24 BePe2 isozire | | voorsacs ese | | 14.0.0.1/24 a / \ Woaray2e Re rojo ORFF areRO / \ Mogae | | gotta / oss / p TASK © Remove the prevoius lab routing configurations * Advertise the interfaces defined as per the diagram Redistrubite rip routes in to ospf on R4 RI (config) #router ospf 1 RI (config-router) ##network 10.0.0.0 0.255.255.255 area 10 RI (config-router) ##network 1.0.0.0 0.255.255.255 area 10 RI (config-router) ##network 11.0.0.0 0.255.255.255 area 10 RI (config-router) #end R2{config) #router ospf 1 R2(config-router) #network 20.0.0.0 0.255.255.255 area 10 R2{config-router] #nefwork 2.0.0.0 0.255.255.255 area 10 R2(config-router) #network 12.0.0.0 0.255.255.255 area 10 R2(config-router) #nefwork 1.0.0.0 0.255.255.255 area 10 R2(configrouter)#end R3(config) #router ospf 1 R3(config-router) #network 30.0.0.0 0.255.255.255 area 10 R3(config-router) #network 3.0.0.0 0.255.255.255 area 0 R3(config-router) #network 13.0.0.0 0.255.255.255 area 0 R3(config-router] #network 2.0.0.0 0.255.255.255 area 10 R4(config) #router rip Ré(config-router) #version 2 Ré(configrouter) #no auto-summary when saroniehonsasie maraseahtonnsam® Page BSRé(config-router) #network 14.0.0.0 Ré(config) #router ospf 1 Ré(config-router] #network 3.0.0.0 0.255.255.255 area 0 RA core router) #network 3. .255.255.255 area 0 RI#sh : route 13.0.0.0/32 is subnetted, 4 subnets 14.0.0.0/24 is subnetted, 4 subnets © 30.0.0.0/8 [110/129] via 1.1.1.2, 00:00:38, Serial] /O R2#tsh ip route ospf © 14 3.0.0.0/8 [110/128] via 2.2.2.2, 00:01:03, Serial /1 O1A 40.0.0.0/8 [110/129] via 2.2.2.2, 00:00:25, Serial! /1 © 10.0.0.0/8 [110/65] via 1.1.1.1, 00:01:03, Serial /0 11.0.0.0/32 is subnetted, 4 subnets © 1.0.2.1 [110/65] via 1.1.1.1, 00:01:03, Serial /O O 1.0.3.1 [110/65] via 1.1.1.1, 00:01:03, Serial! /O © 11.0.0.1 [110/65] via 1.1.1.1, 00:01:03, Serial! /O © _11.0.1.1 [110/65] via 1.1.1.1, 00:01:03, Serial /O 13.0.0.0/32 is subnetted, 4 subnets OIA 13.0.0.1 [110/65] via 2.2.2.2, 00:01:03, Serial! /1 OIA 13.0.1.1 [110/65] via 2.2.2.2, 00:01:03, Serial! /I OIA 13.0.2.1 [110/65] via 2.2.2.2, 00:01:03, Serial! /I OIA 13.0.3.1 [110/65] via 2.2.2.2, 00:01:03, Serial! /1 14.0.0.0/24 is subnetted, 4 subnets 2.2.2.2, 00:00:20, Serial! /1 © 30.0.0.0/8 [110/65] via 2.2.2.2, 00:01:03, Serial /1TASK * Configure area 10 fo stop LSA 5 and LSA 4 + Make sure that the area 10 routers still able to reach the external routes In oder fo ensure that no external routes should enter in fo area 10 we need to configure area 10 as stub here On all the routers of the ospf area 10 ( R1,R2, R3) the below command has to configured ON R1/R2/R3 Rx(config)#router ospf 1 Rx(config-router)#area 10 stub R2#sh ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface 11.0.3. 0 FULL/- 00:00:37 1.1.1.1 Serial /0 13.0.3.1 0 FULL/- 00:00:37 2.2.2.2 Serial /1 RI#sh ip route ospf © 2.0.0.0/8 [110/128] via 1.1.1.2, 00:00:28, Serial /0 O1A 3.0.0.0/8 [110/192] via 1.1.1.2, 00:00:28, Seriall /O © 20.0.0.0/8 [1.10/65] via 1.1.1.2, 00:00:28, Serial /0 O1A 40.0.0.0/8 [110/193] via I.1.1.2, 00:00:28, Serial /O 12.0.0.0/32 is subnetted, 4 subnets © 12.0.1.) [110/65] via 1.1.1.2, 00:00:28, Seriall /0 © — 12.0.0.1 [110/65] via 1.1.1.2, 00:00:28, SerialI /O © — 12.0.3.1 [110/65] via 1.1.1.2, 00:00:28, Seriall/O © 12.0.2.) [110/65] via 1.1.1.2, 00:00:28, Seriall /O 13.0.0.0/32 is subnetted, 4 subnets OIA 13.0.0.1 [110/129] via 1.1.1.2, 00:00:28, Seriall /0 O1A 13.0.1.1 [110/129] vie 1.1.1.2, 00:00:28, Seriali /0 OIA 13.0.2.1 [110/129] via 1.1.1.2, 00:00:28, Serial /O OIA 13.0.3.1 [110/129] via 1.1.1.2, 00:00:28, Serial! /O © 30.0.0.0/8 [110/129] via 1.1.1.2, 00:00:28, Seriall/O R2#tsh ip route ospf OA 3.0.0.0/8 [110/128] via 2.2.2.2, 00:00:41, Seriall/1 O1A 40.0.0.0/8 [110/129] via 2.2.2.2, 00:00:41, Serial /1 © 10.0.0.0/8 [110/65] via 1.1.1.1, 00:00:41, Serial /0 11.0.0.0/32 is subnetted, 4 subnets © 1.0.2.1 [110/65] via 1.1.1.1, 00:00:41, Serial! /O © 1.0.3.1 [110/65] via 1.1.1.1, 00:00:41, Serial! /O © 1.0.0.1 [110/65] via 1.1.1.1, 00:00:41, Serial! /O © 1.0.1.1 [110/65] via 1.1.1.1, 00:00:41, SerialI /O 13.0.0.0/32 is subnetted, 4 subnets OIA 13.0.0.1 [110/65] via 2.2.2.2, 00:00:41, Serial! /1 OIA 13.0.1.1 [110/65] via 2.2.2.2, 00:00:41, Seriall/1 OIA 13.0.2.1 [110/65] via 2.2.2.2, 00:00:41, Seriall/1 O1A_13.0.3.1 [110/65] via 2.2. 00:41, Serial /1 © _30.0.0.0/8 [110/65] via 2.2.2.2, 00:00:41, Serial /1R3#tsh ip route ospf 1.0.0.0/8 [110/128] via 2.2.2.1, 00:00:45, Serial! /0 20.0.0.0/8 [110/65] via 2.2.2.1, 00:00:45, Serial /0 40.0.0.0/8 [110/65] via 3.3.3.2, 00:01:00, Serial /1 10.0.0.0/8 [110/129] via 2.2.2.1, 00:00:45, Serial] /0 11.0.0.0/32 is subnetted, 4 subnets 11,0.2.1 [110/129] via 2.2.2.1, 00:00:45, Serial! /O 11.0.3.1 [110/129] via 2.2.2.1, 00:00:45, Serial! /O 11.0.0.1 [110/129] via 2.2.2.1, 00:00:45, Serial /O 11.0.1.1 [110/129] via 2.2.2.1, 00:00:45, Serial /O 12.0.0.0/32 is subnetted, 4 subnets 12.0.1.1 [110/65] via 2.2.2. 1, 00:00:45, Serial! /O 12.0.0.1 [110/65] via 2.2.2.1, 00:00:45, Serial! /O 12.0.3.1 [110/65] via 2.2.2.1, 00:00:45, Serial! /O ©0000 0000 0000 12.0.2.1 [110/65] via 2.2.2.1, 00:00:45, Serial! /O 14.0.0.0/24 is subnetted, 4 subnets * Here you can see ail SRISEITOUISS RE PISCES WithTalSRGIS FETUIRFAUIS and stil you canreach external routes on R4 * The Border router R3 will have specific routes NO defaultroute on border router) Ri#ping 14.0.0.1 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos to 14.0.0.1, timeout is 2 seconds: Success rate is 100 percent (5/5), round-trip min/avg/max = 76/134/172 ms TASK : Remove the previous lab configs to move to next task RI/R2/R3 Rx(config) #router ospf 1 Rx(config-router] #NO area 10 stub TASK Configure area 10 to stop LSA 5,, LSA4 and LSA 3 routes ( EI/E2, OIA) + Make sure that the area 10 routers still able fo reach the external routes and ospf inter area routes In oder to ensure that no external routes and OIA routes should enter in fo area 10 we need to configure area 10 as totally stub here R1#sh ip route ospfTo Configure Area 10 Totally Stub Only on Area border router of area 10 (R3) R3 (config) #router ospf 1 R3(config-router) #area 10 stub no-summary in all the internal routers of area 10 (RI and R2) (except ABR) RI (config) #router ospf 1 RI (config-router) #area 10 stub RI#tsh ip route ospf © 2.0.0.0/8 [110/128] via 1.1.1.2, 00:00:00, Seriall /0 © 20.0.0.0/8 [110/65] vie 1.1.1.2, 00:00:00, Serial /0 12.0.0.0/32 is subnetted, 4 subnets © 12.0.1.1 [110/65] via 1.1.1.2, 00:00:00, Serialt /O © — 12.0.0.1 [110/65] via 1.1.1.2, 00:00:00, Seriall /O ° ° 12.0.3.1 [110/65] via 1.1.1.2, 00:00:00, Serial! /O 12.0.2.1 [110/65] via 1.1.1.2, 00:00:00, Serial! /O © _30.0.0.0/8 [110/129] via 1.1.1.2, 00:00:00, Serial] /O R2#sh ip route ospf © 10.0.0.0/8 [110/65] via 1.1.1.1, 00:01:04, Seriall /0 11.0.0.0/32 is subnetted, 4 subnets © 1.0.2.1 [110/65] via 1.1.1.1, 00:01:04, Seriall /O © 1.0.3.1 [110/65] via 1.1.1.1, 00:01:04, Serial /O © 1.0.0.1 [110/65] via 1.1.1.1, 00:01:04, Serial! /O © 1.0.1.1 [110/65] via 1.1.1.1, 00:01:04, Serial /0 © 30.0.0.0/8 [110/65] via 2.2.2.2, 00:01:04, Serial /1 R3#tsh ip route ospf © 1.0.0.0/8 [110/128] via 2.2.2.1, 00:01:12, Seriall /020.0.0.0/8 [110/65] via 2.2.2.1, 00:01:12, Serial /O 40.0.0.0/8 [110/65] via 3.3.3.2, 00:01:25, Serial] /1 10.0.0.0/8 {1 10/129] via 2.2.2.1, 00:01:12, Seriall/O 11.0.0.0/32 is subnetted, 4 subnets 11,0.2.1 [110/129] via 2.2.2.1, 00:01:12, Serial! /0 1.0.3.1 [110/129] via 2.2.2.1, 00:01:12, Serial! /0 1.0.0.1 [110/129] via 2.2.2.1, 00:01:12, Serial! /O 1.0.1.1 [110/129] via 2.2.2.1, 00:01:12, Serial! /0 12.0.0.0/32 is subnetted, 4 subnets 12.0.1.1 [110/65] via 2.2.2.1, 00:01:12, Serial! /O 12.0.0.1 [110/65] via 2.2.2.1, 00:01:12, Serial! /O 12.0.3.1 [110/65] via 2.2.2.1, 00:01:12, Serial! /O 12.0.2.1 [110/65] via 2.2.2.1, 00:01:12, Serial! /O 14,0.0.0/24 is subnetted, 4 subnets 0000 0000 000 All external ( £1/E2) and OIA routes replaced with single default route and you maintain connectivity still at @ cost of reducing the size of routing table. Ri#ping 14.0.0.1 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos to 14.0.0.1, timeout is 2 seconds: Success rate is 100 percent (5/5). round-trip min/avg/max = 72/174/364 ms RI#ping 30.1.1.1 Type escape sequence to abort. a 5, 100-byte ICMP Echos to 30.1.1.1, timeout is 2 seconds: Success rate is 100 percent (5/5), round-trip min/avg/max = 16/R1/292 msNot so Stubby Area (NSSA) Not-So-Stub areas MOA, NSSA breaks stub area rules. ASBR (RI) is allowed in NSSA. Special LSA type 7 defined. sent by ASBR. ABR converts LSA type 7 to LSA type 5. [ABR sends default route into NSSA instead of external routes from other ASBRs. NSSA is an RFC addendum. NSSA NA. Generates default route into OSPF (Stub) Allow external routes through stub Area, External LSA pass as LSA7 via NSSA Area, ABR converts LSA type 7 to LSA type 5.NSSA (Contd) NPA, RIP Type 7 LSA Type 5 LSA 172.16.20.0/24 172.16.0.0/16 NSSA Configuration XOA,. All Internal routers ( RI/ R2) Rx(config)router ospf Rx(config-router)#area 10 nssa (On ABR (R3) R3(coniig)# router ospf1 R3(config-router}# area 10 nssa default-information-originate Neaaiae R3(config-router)#endToTAtty NSSA > [Pom SNE + alles Batre verte bya © ___»—>» << Sane I CO cee Rae ae s «: | (They Sr — aa | ereeteye, fe . Alas Gena tage, SE Ek —————__r Totally NSSA Configuration XA, All Internal routers ( RI/ R2) Rx(config)#router ospf Rx(config-router)#area 10 nssa ae ene EES (On ABR (R3) R3(coniig)# router ospf1 R3(config-router}# area 10 nssa no-summary Nee 1 | 3 (config-router)#endnec Totally Totally ‘Stub Area ‘Stubby Area m, OA. ComPiGtaTin Dt Rv ar | Awe Stu Ave to sts Pra fo She olay ste Ar. to SNE ow. 10 Stee NoSummey Nss& fren to NSS Arex lo ASSA Ito D> NNSs: lo Oana tohany ws fire lo SSA Pern fo Sse a SumenyLAB: NSSA (Not So Stubby Area) = Toor 12.0.0.1/24 | aaa |S BIGRP 1 / LoorBac | 11.0.0.1/24 1 TASK © Configure OSPF, RIP and EIGRP as per the diagram ‘* Redistribute EIGRP in to OSPFon RI and RIP into OSPF on R4 R1 (config) #router eigrp 100 RI (config-router) #no auto-summary RI (config-router) #network 11.0.0.0 RI (config-router) #exit RI (config) #router ospf 1 RI (config-router] # #network 10.0.0.0 0.255.255.255 area 10 RI cont router) ##nefwork 1.0.0.0 0.255.255.255 area 10 RI (config-router) tend R2{config) #router ospf 1 R2(config-router] #network 0.0.0.0 0.0.0.0 area 10 R3{config) #router ospf I R3{config-router) #nefwork 30.0.0.0 0.255.255.255 area 10 R3(config-router) #network 3.0.0.0 0.255.255.255 area 0 R3(config-router] #network 13.0.0.0 0.255.255.255 area 10 R3{config-router] #network 2.0.0.0 0.255.255.255 area 10 whe Sarno hontai maraeeahtonesam® "Page 95Ré(config) #router rip Ré(config-router) #version 2 Ré(config-router) #no auto-summary Ré(config-router] #network 14.0.0.0 Ré(config) #router ospf 1 Ré(config-router] #network 3.0.0.0 0.255.255.255 area 0 Ré(config-router) #network 3.0.0.0 0.255.255.255 area 0 TASK : Configure Area 10 As Stub For Verification On R1/R2/R3 Rx(config) #router ospf 1 Rx(config-router)#area 10 stub RI#tsh ip route ospf O 2.0.0.0/8 [110/128] via 1.1.1.2, 00:00:16, Serial! /0 O14 3.0.0.0/8 [1 10/192] via 1.1.1.2, 00:00:16, Serial /O © 20.0.0.0/8 {110/65} vier 1.1.1.2, 00:00:16, Serial! /0 © 1A 40.0.0.0/8 [110/193] via 1.1.1.2, 00:00:16, Serial /O 12.0.0.0/32 is subnetied, 4 subnets 12.0.1.1 [110/65] via 1.1.1.2, 00:00:16, Serialt/0 12.0.0.1 [110/65] via 1.1.1.2, 00:00:16, Serialt/0 12.0.3.1 [110/65] via 1.1.1.2, 00:00:16, Serial1/0 12.0.2.1 [110/65] via 1.1.1.2, 00:00:16, Serial /0 13.0.0.0/32 is subnetted, 4 subnets 13.0.0.1 [110/129] via 1.1.1.2, 00:00:16, Serial /0 13.0.1.1 [110/129] via 1.1.1.2, 00:00:16, Serial /0 13.0.2.1 [110/129] via 1.1.1.2, 00:00:16, Serial! /0 13.0.3.1 [110/129] via 1.1.1.2, 00:00:16, Serial /0 30.0.0.0/8 [110/129] via 1.1.1.2, Seriall/0 Ri#ping 14.0.0.1 Type escape sequence fo abort. Sending 5, 100-byte ICMP Echos to 14.0.0.1, timeout is 2 seconds: 00000 0000 Success rate is 100 percent (5/5), round.trio minavg/max = 76/134/172 ms R4itsh ip route ospf O1A 1.0.0.0/8 [110/192] via 3.3.3.1, 00:00:54, Serial /0 O1A 2.0.0.0/8 [110/128] via 3.3.3. 1, 00:02:30, Seriall /O OA 20.0.0.0/8 [110/129] via 3.3.3.1, 00:00:54, Serial /O O14 10.0.0.0/8 [110/193] via 3.3.3.1. 00:00:54, Serial /O 12.0.0.0/32 is subnetted, 4 subnets OIA 12.0.1.1 [110/129] via 3.3.3. 1, 00:00:54, Seriall /0 OIA 12.0.0.1 [110/129] via 3.3.3. 1, 00:00:54, Seriall /0 OIA 12.0.3.1 [110/129] via 3.3.3. 1, 00:00:54, Seriall /O OA 12.0.2.1 [110/129] via 3.3.3. 1, 00:00:54, Seriall /O13.0.0.0/32 is subnetted, 4 subnets OA 13.0.0.1 [110/65] via 3.3.3. 1, 00:02:30, Serial /O OIA 13.0.1.1 [110/65] via 3.3.3.1, 00:02:30, Serial /O OIA 13.0.2.1 [110/65] via 3.3.3.1, 00:02:30, Serial /O OIA 13.0.3.1 [110/65] via 3.3.3.1, 00:02:30, Serial! /O OIA 30.0.0.0/8 [110/65] via 3.3.3. 1, 00:02:30, Seriall /O R2#sh ip route ospf OIA 3.0.0.0/8 [110/128] via 2.2.2.2, 00:01:14, Serial /1 OVA 40.0.0.0/8 [110/129] via 2.2.2.2, 00:01:14, Serial /1 © 10.0.0.0/8 [110/65] via 1.1.1.1, 00:01:14, Seriall /0 13.0.0.0/32 is subnetted, 4 subnets 13,0.0.1 [110/65] via 2.2.2.2, 00:01:14, Serial! /1 13.0.1.1 [110/65] via 2.2.2.2, 00:01:14, Serial! /1 13.0.2.1 [110/65] via 2.2.2.2, 00:01:14, Serial! /1 13.0.3.1 [110/65] via 2.2.2.2, 00:01:14, Seriall /1 © 30.0.0.0/8 [110/65] via 2.2.2.2, 00:01:14, Seriall/1 OMIA 0.0.0.0/0 [110/65] via 2.2.2.2, 00:01:14, Serial /1 ° ° ° ° R3itsh ip route ospf © 1.0.0.0/8 [110/128] via 2.2.2.1, 00:04:24, Serial /O © 20.0.0.0/8 [110/65] vic 2.2.2.1, 00:04:24, Serial! /0 © 40.0.0.0/8 [110/65] via 3.3.3.2, 00:04:38, Serial! /1 © 10.0.0.0/8 [110/129] via 2.2.2.1, 00:04:24, Serial /O 12.0.0.0/32 is subnetted, 4 subnets O 12.0.1. [110/65] via 2.2.2.1, 00:04:24, Serial /O © — 12.0.0.1 [110/65] via 2.2.2.1, 00:04:24, Serial /O © — 12.0.3.1 [110/65} via 2.2.2.1, 00:04:24, Serial /O oO 12.0.2.1 [110/65] via 2.2.2.1, 00:04:24, Seriall /O 14.0.0.0/24 is subnetted, 4 subnets O€2 14.0.2.0 [110/20] via 3.3.3.2, 06 24, Serial] /1 EZ 14.0.3.0 [110/20] via 3.3.3.2, 00:04:24, Serial!/1 O€£2 14.0.0.0 [110/20] via 3.3.3.2, 00:04:24, Serial! /1 O€2 14.0.1.0 [110/20] via 3.3.3.2, 00:04:24, Serial! /1 Réitsh ip route ospf OIA 1.0.0.0/8 [110/192] via 3.3.3.1, 00:04:36, Serial /O O1A 2.0.0.0/8 [110/128] via 3.3.3.1, 00:06:19, Serial] /O OA 20.0.0.0/8 [110/129] via 3.3.3.1, 00:04:36, Serial /O O1A 10.0.0.0/8 [110/193] via 3.3.3. 1, 00:04:36, Serial! /O 12.0.0.0/32 is subnetted, 4 subnets OIA 12.0.1.1 [110/129] via 3.3.3. 1, 00:04:36, Serial! /0 OIA 12.0.0.1 [110/129] via 3.3.3. 1, 00:04:36, Serial /O OIA 12.0.3.1 [110/129] via 3.3.3. 1, 00:04:36, Serial /0 OA 12.0.2.1 [110/129] via 3.3.3. 1, 00:04:36, Serial /O 13.0.0.0/32 is subnetted, 4 subnets OIA 13.0.0.) [110/65] via 3.3.3.1, 00:06:19, Serial /0 OIA 13.0.1.1 [110/65] via 3.3.3. 1, 00:06:19, Serial! /O OIA 13.0.2.1 [110/65] via 3.3.3.1, 00:06:19, Serial /0 OIA _13.0.3.1 [110/65] via 3.3.3.1, 00:06:19, Serial /0 © 1A 30.0.0.0/8 [110/65] via 3.3.3.1, 00:06:19, Seriall 0