Cisco WAN :: 6513 MP-iBGP And Route Reflector
Nov 13, 2012
We are a service provider and we have presence across different data centres located across the country. Our core boxes are the mixture of Cisco VXR’s and 6513 switches which have MP-iBGP peering with the route reflectors. If a new client comes on board, a new VRF will be created to carry the client’s traffic and as a standard practice the VRF will be added to all the core devices across the network even if they don’t have a presence in a data centre.Now, I am designing a network for a client who has presence only at two fixed locations as shown in the attached diagram. We will be acting as a transit network between the client and another service provider. So, I have planned to use MP-eBGP between us and the other provider and default/static routes to the client’s network I don’t think will be an issue. Since the client has presence only at two locations, my design thoughts are to create a VRF and a Vlan and form an iBGP session only between the two routers and bypassing Route Reflectors. Created the VRF at BNE_R1 and formed MP-eBGP relation with the other provider and I can see some routes appearing via the peering which is normal and expected.
My problem is (not problem I don’t understand how this is happening), I created the VRF on Mel_R1 router and did not add any extra lines of configurations to BGP under that VRF instance and when I was checking some thing I accidentally found the same routes which appears on Bne_R1 is appearing in the VRF’s routing table via MP-iBGP session through route reflector. I can’t understand how this is happening, since I haven’t added any thing on the route reflector and some how its leaking traffic.
Is this normal??Is it’s a must / standard / Good Practise to add the newly created VRF across all the device which peers with the route reflector ??Is there a way to override the Route Reflector just for this client (VRF) and form a direct MP-iBGP peering directly with the devices involved.A network can be designed in much number of ways.
View 1 Replies
ADVERTISEMENT
Sep 12, 2011
If I have five iBGP routers in AS 64512 and one of the iBGP router has an eBGP peer to a different AS, which iBGP router (r1, r2, r4, r5, or r8) should I chose to be my route reflector and why? Also, what happens if the route reflector router fails? Do I designate a backup route reflector? I'm new to BGP.
View 4 Replies
View Related
Jan 20, 2011
how many sessions a BGP Route Reflector can support? is it 10, 100 or 1000 BGP sessions? What degradation of performance may arise in the case of a BGP RR sessions overload? Consider that the RR I'm deal with has both the control plane and teh forwarding plane. Which command I may use for get the output about BGP sessions resurces used level?
The following are the data about the RR:
Cisco 7600
WS-SUP720-3BXL
Version 12.2(33)SRD5
cisco CISCO7609 (R7000) processor (revision 1.2) with 983008K/65536K
View 1 Replies
View Related
May 27, 2013
I have question regarding route reflector. In my MPLS core network ,we have two route reflectors. Two route reflectors and each PE routers are belonged to a peer group. Route reflectors are Cisco 7301. IOS 12.3. I have Hardware maintenace on one Routereflector. How can I do that without interupting the end customer trafic.
View 2 Replies
View Related
Nov 23, 2011
I'm trying to figure out if the multi-layer Route-Reflector topology would work for me. Let say we have 2 Route-reflectors RC-RR1 and RC-R2 and all other router are their reflect-clients. Now I'm getting a new router RC-.E001 and would like to set new level of Route-reflectors. I'd like that now the router RC-E001 is a route-reflector client of RC-E002 (new level of RR) and RC-RR1, e.g. it will be a client of route-reflectors from different levels.
View 3 Replies
View Related
Oct 29, 2012
we have a chassis 6513-E and a module WS-X6748-GE-TX, I'd like to know if could I put this module in any slot, since the documentation from Cisco says that any slot from a chassis 6500-E Series can support this module. And then in the documentation of WS-X6748-GE-TX says that this module is not compatible in the slots 1-8 of the 6513 chassis, only from 9th to 13th slots, in those slots from the 6513-E we already have 4x WS-X6748-GE-TX, and we'd like to know if could we put the module in the rest of the slots. The 6513, and 6513-E is kind of confusing.
View 4 Replies
View Related
May 15, 2013
Topology :
PE router-T (ASN 1111) ----eBGP---- CE router-T (ASN 65500) ----iBGP---- CE router-V (ASN 65500 ) ----eBGP---- PE router-V (ASN 2222)
When We have configured in this mannger everything is working fine. Only thing is that I can not receive all the NEtwork updates coming from PE- Router - V in CE router T. It's due to synchroization rule (I have not tunrned off synch in CE Router T.) Now for Load sharing purpose I have applied one Route map on iBGP peering from CE Router V to CE router T in OUT direction mentioning any routes coming via ASN 65555 than set Local Preference = 150 and will prefer path via MPLS SP - V. Rest via MPLS SP - T.
But as soon as I have applied the Route-Map. It's not reflected.When I have applied clear ip bgp * on CE rotuer - V than I can see two routes in CE router - T with LP 150 and default. Everything is working OK.
When trying to check the auto failover by Shuting LAN int of CE router-V --- Failover is also working via CE router-T.When reenabling the LAN int ----- After that iBGP perring is flapping continuolsly. Finally We have remove the route-map ad it was stable.
find the route map :
CE Router - V
router bgp 65500
!
address-family ipv4
[code].....
I have also checked the MTU issue between these two Peer (LAN int. of both the CE routers) by pinging each other with size 1500 with df-bit set.
View 5 Replies
View Related
Oct 7, 2011
intra-confederation labs -
Ibgp router (R1 ) - propagate updates packets to intra-confederation neighbor (64512) and 64512 - member as sending notification errors to ibgp router R1 - with Malformed AS_Path
R1 neighborship going down after receiving notification
i dont what exact root cause of this issuse
View 9 Replies
View Related
Apr 6, 2012
Here is my Lab Setup: 2691 is BGP nei to R4 router and they are not directly connected. 2691 and R4 are in same AS 6500. 2691 Config---router ospf 1 network 3.3.3.3 0.0.0.0 area 0 . Its advertising its loop back IP to OSPF domain.
router bgp 6500
no synchronization
bgp log-neighbor-changes
neighbor 6.6.6.6 remote-as 6500
neighbor 6.6.6.6 update-source Loopback3
[code]...
R4 Router
router ospf 11
log-adjacency-changes
network 6.6.6.6 0.0.0.0 area 0
[ code].....
We can see that 2691 and R4 are BGP neis and 2691 has 200.1.x.x routes in its route table. My question is why from 2691 router i am unable to ping any route learned by BGP from R4?
2691Router# ping 50.1.1.0 Type escape sequence to abort.Sending 5, 100-byte ICMP Echos to 50.1.1.0, timeout is 2 seconds:.....Success rate is 0 percent (0/5)2691Router#ping 200.1.2.0 [ code]...
View 12 Replies
View Related
Jun 24, 2011
I've enabled antispoof on all interfaces on asa 5510.If you start a traceroute to a network on the default route, everything works, since replies comes to an interface with route 0.0.0.0/0 defined.If you start a tracer route to a network that is NOT on the default route (let's assume coporate MPLS), you only get response from first carrier router, the other are discarded because of anti spoof violation.
I have ICMP inspection and icmp-error inspection enabled.
View 1 Replies
View Related
Mar 13, 2012
clearing catalyst 6513 configuration from CSM module sections?
I am planning to migrate from CSM to ACE module in 6513 and interesting if is it safe just to do the following:
1) powerdown CSM module with command:
no power enable switch 1 module 3
2) clear in 6513 configuration CSM sections starting from line "module ContentSwitchingModule 3"
Is that enough to clear CSM configuration?
Also to return the CSM module back to the service will it be enough just to restore cleared config's sections and power on the module again?
View 2 Replies
View Related
May 4, 2011
Two internet links from different SP using different routers an firewalls connected to a 6513. I need to use these two links as primary and secondary (the secondary will be used just if the primary fails) for just two specific machines and 6513 have to be responsible for jusing between primary and secondary link. The rest of the network have to use just the primary link.
View 5 Replies
View Related
Nov 28, 2011
Can the sup720b be used in any other slot on a 6513 besides 7 and 8?
View 1 Replies
View Related
Apr 22, 2013
Actually I am new to this ASR , in my environment my 6513 is connected ASR , I want to know how can we access and configure VLAN on Gigabit interface which is connected to 6513.
View 9 Replies
View Related
Jan 31, 2012
Well I have been back and forth on this a while now...I have a 6513E chassis that is getting prepped for prod. I am currently testing sso functionality and I can only get it to work using the following images on both Sup Cards.
s72033-adventerprise_wan-mz.122-33.SXI5.bin
If I try any other image, smaller or bigger in size...it forces my Sup card in mod 8 to recycle " proxy request from peer ". I have tried K9 images and non K9 images. Here is an output from sh redundancy.
Redundant System Information : Available system up time = 4 minutes Switch overs system experienced = 0 Standby failures = 0 Last switchover reason = none [code]...
View 2 Replies
View Related
Sep 18, 2012
In LMS I have a 6513 with several sx 1000 interface setup for etherchannel to catalyst 3750
both sides are set for autoduplex but LMS reports that there is a link duplex mismatch. We just installed the latest patches for the LMS 4.0.1
View 1 Replies
View Related
Jul 31, 2012
I have a new 6513 with 2 sup32's with IOS. This chassis will replace a working 6513 with 2 sup2's with CatOS.I need to pull the running config from the CatOS chassis and make it work on the IOS chassis. i can do this manually but was wondering if there are any trade secrets on doing this.
View 3 Replies
View Related
Nov 21, 2011
I am replacing a faulty sup720 on a 6513. It s the backup/hot not the active sup. It has the same IOS on it. Is it correct that all I need to do is remove the faulty and replace it with the new sup and do a wr mem? Fromwat I have read their should be no down time all connectivity should remain stable?
View 6 Replies
View Related
Aug 9, 2012
I have a 6513 with redundant sup 720-3B's that I cannot get onto. In short, one of the power supplies failed, it still passes traffic but I can't console or ssh to the box. Other than the two sup 720's, I have a 4 port 10gig card, a 16 port GBIC Card and an IDS module. I have tried removing the 10Gig, IDS and one of the sup's but still don't get anything on the console. I have rebooted the entire chassis and don't get anything on my console while booting. I have tried changing the speed of my terminal to every setting available incase someone has changed it at some stage but to no avail. I have tried swapping sup's, using only one at a time in the chassis but not getting anything. Is there anything else I can try to get onto this chassis? The power supply is a 3000w with a 32amp input. The failed power supply had tripped a switch, when i brought it back up, the power supply came out but the output failed LED is on. My #questions are, is there anything else I can do to try get onto the console, and is the power supply goosed when the RED LED is lit? I have reseated the power supply also but the same result.
View 2 Replies
View Related
Mar 31, 2011
We have a 6513 which had 2x 8port (WS-X6708-10GE) 10GB modules one in slot 10 and another in slot 12. Between this two modules we created a 4 port trunk 40GB (2 ports in each module) between the 6513 and a Nexus 7018. Yesterday we swopped one of the moduless for a 16 port 10GB (WS-X6716-10GE) and cannot trunk between the two cards. Only 2 ports work in either one or the other. Seems because of the difference between them (DFC3CXL & DFC3C). Taking a look at the logging we noticed something to the fact of incompatability QOS feature between them.
View 4 Replies
View Related
Apr 18, 2013
Are there any EOL notices out for the Catalyst 6513, 6509 etc E chassis? I cant find anything on the internet for the E variant, so assume this hasn't had a notice published yet.
View 2 Replies
View Related
Mar 10, 2013
My question is regarding VSS configuration on Cisco 6513 switches. My understanding is that the hardware and software configuration on the devices must be exactly the same for the VSS to function correctly. Do the Bootstrap versions also have to be identical?
The production switch is running Bootstrap Version 12.2(17r)SX5, while the new switch is running Bootstrap Version 12.2(17r)SX7.
View 3 Replies
View Related
May 16, 2012
I was working on adding a Cisco 6513 to TACACS but ran into trouble. While I work on the issue offline (recreate and test another switch), I wanted to place this switch on radius temporarily.
For some reason i cant undo/delete the AAA commands in order to point to my radius server. Below was done via console: [code]
I disabled my telemetry port on the Cisco 6513 as a precaution. The IOS im using is "s72033-advipservicesk9_wan-mz.122-33.SXI5.bin".how to remove the AAA authentication statement. Hope its not intrusive cause i have a customer on the box.
View 8 Replies
View Related
Jun 4, 2012
I have a situation where My 6513 chassis is covered by smart-net as are most of my line cards but my Supervisors - SUP2 is End of life - end of support - What will happen if i need config help - or a hardware issue with the supervisor ? anyone run into this ? - Yes I know you buy support on the chassis not the line card and If you buy support the whole chasis is covered.
View 1 Replies
View Related
Aug 24, 2012
i have a cisco Netowtk Analysis module installed on a 6513 core switch which is NAM-1, the version on the NAM is 5.1 and we need to upgrade to the latest version which is 5.1(2)
View 1 Replies
View Related
Dec 4, 2012
I am having a hard time getting tunnel fail over working. My setup is illustrated below:
I derive my default route on the border routers. The 6513 peers with the 7206's using BGP to get the default route from each ISP into the core. On the core I use BGP weighting to get my primary default to point to ISP1. So far so good. When I look at my core I see to defaults with ISP1 preferred.
Each ASA has an IP Sec tunnel to the head end site configured (Not shown). The head end site has a crypto map entry with ISP1 and ISP2 defined (in that order) using the "set peer" command.
Fail over works great if an ISP drops the connection or my 7206 or ASA fails, but... While testing fail over I had an issue where both tunnels would be active and there were issues with traffic between sites. I could not determine the root cause. I can only guess that some traffic was going out one tunnel and when trying to come back across the other tunnel was dropped from the firewall because there was no connection built for it. After reading I found that in order to use multiple peers in the "set peer" statement, I needed to configure my head end as "originate-only". I have not done this yet as I have concerns. If the head end site is "originate-only" and the tunnel, for whatever reason drops, I cannot wait for interesting traffic at the head end site bound for this site to bring up the tunnel as most of the traffic originates at this site.
I have been reading about IKE keep alives and DPD but that doesn't sound like it will re-initiate the tunnel. Is this correct? If so I'm looking for a way to make this work.
View 10 Replies
View Related
Jul 12, 2012
I have a need to capture some traffic but my core 6513's are already using the limit of 2 span sessions. I can't edit any of the sessions either because I want to source traffic from vlans and you can only do one or the other. Is using a VACL with 'switchport capture' on the destination interface an option ? E.g. I want to source traffic from vlan 10,20,30,40 and send the all to interface Gi10/10 ? Is there any caveats ? I dont need to be too granular with the ACL's but just capture all traffic in those vlans.
View 2 Replies
View Related
Apr 28, 2012
We have Communication Media Module (WS-SVC-CMM) mounted on 6513 switch. It went down twice and we brought it up by applying "power enable module".
View 4 Replies
View Related
Mar 20, 2013
Need your expert input in sorting out the below problem.I have a cisco 6513 switch which is going into SP mode after a reboot whci i have done during BCP activity in my organization.Below are the log for your reference.
Code...
View 1 Replies
View Related
May 9, 2012
i have a Cisco 6513 it is used one, i have tryed to boot it but it did not work, it alwayes go to rommon mode and i am not able to know what is the issue,
when it boot i get the below outpot from the switch.
System Bootstrap, Version 8.1(3)
Copyright (c) 1994-2004 by cisco Systems, Inc.
Testing lower main memory - data equals address
[Code].....
View 3 Replies
View Related
Jun 4, 2012
I am getting conflicting info about this, and need to get confirmations.Is the older 6513 (non E) model compatible with WS-X6407-10GE blade?The switch we're getting this for have WS-SUP720-3B, 6000W power supply, and WS-C6K-13SLT-FAN2.From what I read they are compatible if entered in slot 9-13, but I also heard that 10GE modules are not compatible with the non E chassis.
View 1 Replies
View Related
Feb 24, 2012
We have 2 6513's that are linked via 2 10 gig interfaces, using an LACP channel.I received an alert this aft stating that the far 6513 was unreachable and the port channel int PO3 had gone down, the 2 10 gig interfaces had also gone down on either side. 5 mins later PO3 had resestablished itself and has been fine since. [code]
View 4 Replies
View Related
May 15, 2012
I have used EIGRP with the variance command for years. Recently we swapped out our 6513 for 2 Nexus 7K's and lost the variance command. So now I'm stuck running our two MPLS routers to a 3750 which then connects to the 7K's, so I can get the unequal load balancing back in operation.So because I can't play with it while it's in production I'm using dynamips to simulate the configs. The problem is I'm not able to get a traffic share count ratio that reflects the actual difference in bandwidth.
The two lines have 155 MB and 45 MB respectively, for a ratio of 3.4. Now you can't really send ".4" of a packet but the total packet ratios when dividing the traffic share count should be similar. I'd settle for 3. I was able to get 2.9 in the past but now on the simulator I can't even get that. I'm seeing traffic share counts like 120:89 and 120:71 depending on how I fudge the metrics when I inject the routes from BGP.
I found this link: [URL] a stellar article by the way, and this guy is doing calculations to arrive at a 5:1. BUT when I apply the same formula using specifics from my network and the desired ratio of 3:1 what I get is an AD so high that the route is no longer feasible. I simply cannot make a ratio fo 3:1 using the formula. How to be able to make anything other than a marginal ratio actually work or is this all just theoretical?
View 4 Replies
View Related
