[AusNOG] Cisco & Router OS help

Alex Samad - Yieldbroker Alex.Samad at yieldbroker.com
Wed Nov 6 16:46:41 EST 2013


Just for completeness thought I would come back with a working solution 

I stuck with the ospf, the extra work to get BGP into the interior network didn't seem worth it.

This seems to be working now, I had to use 2 ospf process and the trick I missed out originally was

redistribute ospf 2 subnets tag 1 route-map 10_172_ONLY

you can filter the redistribution.


VVVVVVVVVVVVVVVVVVVVV
no ip prefix-list FilterOut seq 10
ip prefix-list FilterOut seq 10 permit 10.172.0.0/16 le 32

no route-map 10_172_ONLY
route-map 10_172_ONLY permit 10
match ip address prefix-list FilterOut


no route-map filter_ospf1
route-map filter_ospf1 deny 10
match tag 1
route-map filter_ospf1 permit 20


no route-map filter_ospf2
route-map filter_ospf2 deny 10
match tag 2
route-map filter_ospf2 permit 20


!! sw1
no router ospf 1
router ospf 1
 router-id 10.31.19.253
 log-adjacency-changes
 area 0.0.0.0 authentication message-digest
 redistribute ospf 2 subnets tag 1 route-map 10_172_ONLY
 network 10.31.19.0 0.0.0.255 area 0.0.0.0
 distribute-list route-map filter_ospf2 in
router ospf 2
 redistribute ospf 1 subnets tag 2




no router ospf 2
router ospf 2
 router-id 10.172.255.2
 log-adjacency-changes
 area 10.172.0.0 authentication message-digest
 area 10.172.0.0 nssa
 redistribute ospf 1 subnets tag 2
 network 10.172.201.0 0.0.0.255 area 10.172.0.0
 network 10.172.202.0 0.0.0.255 area 10.172.0.0
 network 10.172.203.0 0.0.0.255 area 10.172.0.0
 network 10.172.204.0 0.0.0.255 area 10.172.0.0
 network 10.172.205.0 0.0.0.255 area 10.172.0.0
 network 10.172.207.0 0.0.0.255 area 10.172.0.0
 network 10.172.208.0 0.0.0.255 area 10.172.0.0
 network 10.172.212.0 0.0.0.255 area 10.172.0.0
 network 10.172.213.0 0.0.0.255 area 10.172.0.0
 network 10.172.250.0 0.0.0.255 area 10.172.0.0
 network 10.172.255.2 0.0.0.0 area 10.172.0.0
 distribute-list route-map filter_ospf1 in
 
router ospf 1
 redistribute ospf 2 subnets tag 1 route-map 10_172_ONLY


 
 
 !! sw2
no router ospf 1
router ospf 1
 router-id 10.31.19.252
 log-adjacency-changes
 area 0.0.0.0 authentication message-digest
 redistribute ospf 2 subnets tag 1 route-map 10_172_ONLY
 network 10.31.19.0 0.0.0.255 area 0.0.0.0
 distribute-list route-map filter_ospf2 in

router ospf 2
 redistribute ospf 1 subnets tag 2


no router ospf 2
router ospf 2
 router-id 10.172.255.3
 log-adjacency-changes
 area 10.172.0.0 authentication message-digest
 area 10.172.0.0 nssa
 redistribute ospf 1 subnets tag 2
 network 10.172.201.0 0.0.0.255 area 10.172.0.0
 network 10.172.202.0 0.0.0.255 area 10.172.0.0
 network 10.172.203.0 0.0.0.255 area 10.172.0.0
 network 10.172.204.0 0.0.0.255 area 10.172.0.0
 network 10.172.205.0 0.0.0.255 area 10.172.0.0
 network 10.172.207.0 0.0.0.255 area 10.172.0.0
 network 10.172.208.0 0.0.0.255 area 10.172.0.0
 network 10.172.212.0 0.0.0.255 area 10.172.0.0
 network 10.172.213.0 0.0.0.255 area 10.172.0.0
 network 10.172.250.0 0.0.0.255 area 10.172.0.0
 network 10.172.255.3 0.0.0.0 area 10.172.0.0
 distribute-list route-map filter_ospf1 in
 
router ospf 1
 redistribute ospf 2 subnets tag 1 route-map 10_172_ONLY

A

>From: Alex Samad - Yieldbroker 
>Sent: Tuesday, 5 November 2013 9:42 AM
>To: 'Paul Gear'; ausnog at lists.ausnog.net
>Subject: RE: [AusNOG] Cisco & Router OS help
>
>Hi
>
>So, from my limited reading, BGP great for peering, exterior routing  and OSPF is better (especially for faster convergence) for interior.
>
>My network setup, limits me to 1 common routing protocol in the business . OSPF.  I have routeros to do my exterior BGP peering, the 3rd party does static or BGP.
>
>
>So my area1 router can't do BGP without spending money on it (so I have been told, but I will go off and investigate that)
>
>I have added a pic make it a bit easier
>
>http://img42.com/edJBr
>
>extending bgp to the ABR sounds promising, I will have a look at that.
>
>A
>
> [snip]




More information about the AusNOG mailing list