Professional Documents
Culture Documents
Customer Engineering
Version: 5
Version 1.0
Document Acceptance
I have reviewed this document and it is approved for use effective from the signing date below.
Revision History
1 Introduction............................................................................................................4
2 Topology...................................................................................................................4
3 Local Configuration problem............................................................................4
3.1 Peer Establishment................................................................................................................................ 4
3.1.1 Common problem.......................................................................................................................................................... 4
3.1.2 Peer establishment – iBGP......................................................................................................................................... 5
3.1.3 Peer establishment – eBGP........................................................................................................................................ 7
3.1.4 Peer Establishment - Password................................................................................................................................ 9
3.2 Missing route......................................................................................................................................... 11
3.2.1 Routing Origination.................................................................................................................................................... 11
1 Introduction
This document is intended to provide for troubleshooting steps to be taken for debugging BGP related
issues. This document is supposed to be generic troubleshooting guide, for specific feature related
information other resources should be considered.
2 Topology
Symptoms
[local]R3#show tcp
Active Internet connections
PCB Recv-Q Send-Q Local Address Foreign Address State
f9abed8 0 0 11.2.3.3.62071 11.0.0.2.179 SYN_SENT
First check the route is on the routing table and then tries to ping it.
[local]R3#show ip route
Codes: C - connected, S - static, S dv - dvsr, R - RIP, e B - EBGP, i B - IBGP
O - OSPF, O3 - OSPFv3, IA - OSPF(v3) inter-area,
N1 - OSPF(v3) NSSA external type 1, N2 - OSPF(v3) NSSA external type 2
E1 - OSPF(v3) external type 1, E2 - OSPF(v3) external type 2
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, N - NAT
IPH - IP Host, SUB A - Subscriber address, SUB S - Subscriber static
M F - Mobile Sub Foreign Agent, M H - Mobile Sub Home Agent
A - Derived Default, MeH - Media Nexthop
> - Active Route, * - LSP
Source address is the outgoing interface towards the destination but peering in this case is using
loopback interfaces!
Force both routers to source from the correct interface
Use “update-source” to specify the loopback when loopback peering
The debug command show the BGP session is using the interface address to establish the peering. Let’s
change the config to this.
Summary
Assume that IP connectivity has been checked Including IGP reachability between peers
Check TCP to find out what connections we are accepting
o Check the ports and source/destination addresses
o Do they match the configuration?
Common problem:
iBGP is run between loopback interfaces on router (for stability), but the configuration is missing from the
router ⇒ iBGP fails to establish
Remember that source address is the IP address of the outgoing interface unless otherwise specified.
R2 is established now
eBPG still having problem
[local]R3#ping
Target IP address: 11.0.0.6
Extended commands [n]: y
Source IP address: 11.0.0.3
PING 11.0.0.6 (11.0.0.6): source 11.0.0.3, 36 data bytes,
timeout is 1 second
.....
Routing to R6 loopback is reachable but when using extended ping to test loopback to loopback
connectivity. It seems R3 does not have a route to loopback at R6.
eBGP peers are normally directly connected and the TTL is set to 1 for eBGP peers. If not directly
connected, specify ebgp-multihop
At this point the when we add the ebgp-multihop at the config the session should come up
[local]R3#
router bgp 100
neighbor 11.0.0.6 external
remote-as 200
ebgp-multihop 2
update-source loopback0
Summary
If an error is detected, a notification is sent and the session is closed
R6 is configured incorrectly – change from “remote 10” to “remote 100”
After R6 makes this correction the session should come up
Remember to allow TCP/179 through edge filters
It seems the password is missing in R6. Let’s fix R6 configuration then the peering should come up.
[local]R6#
neighbor 11.0.0.3 external
remote-as 100
password encrypted C029D7961F0801F0
ebgp-multihop 2
update-source loopback0
But it do not.
[local]R3#
Jan 30 21:16:04: %SYSLOG-6-INFO: /netbsd: TCP from 11.0.0.6(57022) to 11.0.0.3(179): bad MD5
digest
We must have typo’ed the password on one of the peering routers. Fix the password – best to re-enter
password on both routers and eBGP session now comes up.
[local]R3#
Jan 30 21:19:08: [0001]: %BGP-6-INFO: 11.0.0.6 UP
Summary
Common problems:
o Missing password – needs to be on both ends
o Cut and paste errors
o Typographical & transcription errors
o Capitalisation, extra characters, white space…
Common solutions:
o Check for symptoms/messages in the logs
o Re-enter passwords using keyboard, from scratch – don’t cut&paste
Example 1
Network Statement
[local]R3#
router bgp 100
address-family ipv4 unicast
network 100.100.0.0/16
Example 2
Created by: Jimmy Wong on: 1/14/2009 Page 11 of 12
Updated by: jimmyw on: 2/3/2009 08:58:00 PM /conversion/tmp/activity_task_scratch/647234912.doc
Copyright 2009 Redback Networks Inc. All rights reserved.
Proprietary and Confidential.
No part of this publication may be used or reproduced in any form by any means without prior written permission from Redback Networks Inc.
BGP Troubleshooting Guide
CE-TG-0009
Remember, to have a BGP aggregate you need a BGP component, not a RIB component
[local]R3#sh bgp route 9.9.0.0 /16 longer-prefixes
[local]R3#
Troubleshooting Tips
• BGP Network statement rules - Always need an exact route (RIB)
• Aggregate-address looks in the BGP table, not the RIB
• “show ip route x.x.x.x y.y.y.y longer” - Great for finding RIB component routes
• “show ip bgp x.x.x.x y.y.y.y longer” - Great for finding BGP component routes