Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3236
Views
0
Helpful
10
Replies

EIGRP Autonomous system mismatch detection

1pipantom2
Level 1
Level 1

‎10-04-2007 10:59 PM - edited ‎03-03-2019 07:02 PM

Hello,

It is possible to detect situation when two neigbour routers involved in EIGRP routing are configured by mistake with different AS number ?

I tried this situation practically. Two routers are connected together via Serial link network. One router has AS 1, other AS 10. I try to detect AS mismatch.

First I check what EIGRP packet are comming

debug ip packet detail show source <my neighbour IP address> destination 224.0.0.10 Ip protocol type 88. These packets are EIGRP Hello packet.

I try to go more deeply into details.

debug eigrp packets

I see only ongoing EIGRP Hello packets. But I don't see any incoming packet from my neighbour (which has different AS number). It seems, because of different AS number router silently drop eigrp packet.

Other debug eigrp command also doesn't show any info about AS difference.

Any proposal?

Cisco IOS 12.4 (16)

Best Regards,

Tomas Chmelevski

Labels:
0 Helpful
10 Replies 10

royalblues
Level 10
Level 10

‎10-04-2007 11:21 PM

I dont think you will get a AS mismatch with EIGRP in the debugs

When you do a hello debug, you should see the AS highlighted.

*Mar 1 00:03:21.691: EIGRP: Sending HELLO on Serial2/0

*Mar 1 00:03:21.691: AS 100, Flags 0x0, Seq 0/0 idbQ 0/0 iidbQ un/rely 0/0

*Mar 1 00:03:26.191: EIGRP: Sending HELLO on Serial2/0

*Mar 1 00:03:26.191: AS 100, Flags 0x0, Seq 0/0 idbQ 0/0 iidbQ un/rely 0/0

You should then be checking whether this is the correct AS that has been configured

HTH

Narayan

0 Helpful

1pipantom2
Level 1
Level 1
In response to royalblues

‎10-04-2007 11:50 PM

Hello,

Yes I see sending Hello message and my AS number.

But how to be sure, what remote router has wrong AS number and this is the reason why EIGRP peer doesn't work ?

Let suppose what I doesn't have Telnet access to remote router and the only way I can troubleshoot is to debug incoming messages.

Tomas

0 Helpful

Kevin Dorrell
Level 10
Level 10
In response to 1pipantom2

‎10-05-2007 12:11 AM

I think if you don't see the hellos from the other router, then it isn't talking EIGRP on this link.

If you have mismatched AS, your router will see the hello, it will look for an EIGRP process with that AS, it will not find one, so it will drop the packet. I'm not 100% sure whether you will see it in the debug, but I think you would.

I understand you can see your hellos using the debug, right?

Kevin Dorrell

Luxembourg

0 Helpful

1pipantom2
Level 1
Level 1
In response to Kevin Dorrell

‎10-05-2007 12:34 AM

Hello Kevin,

Yes if remote router has differnt AS number than local one I don't see incoming Hello message from remote router.

Remote router actually sent EIGRP Hello. I can see this with debug eigrp packet on remote router.

If I set the same AS (as it should be)on both router I see incoming and outgoung Hello on both routers.

But IF I set different AS,only messages I can see are outgoing Hello messages (no incoming).

Now two router are on the table and I can connect to both to check what is happening.

But in real life how to detect if remote Router by mistake has different AS number than local one? Suppose, that there is no telnet connectivity to remote router.

Tomas

0 Helpful

Kevin Dorrell
Level 10
Level 10
In response to 1pipantom2

‎10-05-2007 12:50 AM

OK, thanks for confirming that.

I guess what is going on here is that the debug eigrp packet is part of the EIGRP process. But if the router cannot bind the incoming Hello to the EIGRP process (because the AS is wrong), then the process will not see it.

How can you read the remote AS if has been set wrong? That's a good question. Maybe debug ip packet would do it, but you might have to trawl through a lot of data. Filter on the interface first, debug interface S0/0.

Kevin Dorrell

Luxembourg

0 Helpful

royalblues
Level 10
Level 10
In response to 1pipantom2

‎10-05-2007 12:56 AM

Unfortunately i dont think there exists a way to check this.

I do not see any opcode options either that can indicate this.

Narayan

0 Helpful

1pipantom2
Level 1
Level 1
In response to royalblues

‎10-05-2007 02:16 AM

Thank all for reply,

At this point all have the same opinion, that is not possible to detect mismatched EIGRP AS number.

debug ip packet detail only show protocol type for EIGRP (88). So we only know, that EIGRP packets are coming in. But AS number is uknown.

Tomas

0 Helpful

Kevin Dorrell
Level 10
Level 10
In response to 1pipantom2

‎10-05-2007 02:48 AM

OK, it doesn't tell you which AS is configured. But at least it allows you to say that there is or isn't EIGRP at the other end of the link, which could be useful in itself. It's a pity you cannot get a hex dump of the IP packet.

Kevin Dorrell

Luxembourg

0 Helpful

Surya ARBY
Level 4
Level 4
In response to 1pipantom2

‎12-03-2012 08:26 AM

Hi all.

At this point all have the same opinion, that is not possible to detect mismatched EIGRP AS number.

Is it the final point ? I also try to detect AS number mismatch with a device on which I don't have any access...

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card