Route Redistribution Problem

Unanswered Question
Feb 9th, 2009
User Badges:

I have a strange problem with route resdistribution. I am running BGP as my egp and OSPF internally.


I have multiple sites all connected by BGP. I also have cisco ASA firewalls which connect to the network via OSPF.


The problem is that the firewalls are failing to route traffic to a site other than the one they are connected to. Route redistribution has been set up but doesn't appear to be working.


When viewing a route from one of the core switches we get the following report.


BRE-CABH-CORE01#sh ip route 172.29.80.0

Routing entry for 172.29.80.0/21

Known via "bgp 64550", distance 200, metric 5

Tag 64521, type internal

Redistributing via ospf 1

Last update from 192.168.255.5 1w2d ago

Routing Descriptor Blocks:

* 192.168.255.5, from 192.168.255.2, 1w2d ago

Route metric is 5, traffic share count is 1

AS Hops 4

Route tag 64521


Now reading this I would expect that an ospf node would see the route being advertised as an E2 route.


The problem is it doesn't appear (the ospf output is attached). I have also attached the routing code from the core for both OSPF and BGP and the firewall setup code as well.


I am slightly confused here...




  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4.5 (2 ratings)
Loading.
adamclarkuk_2 Mon, 02/09/2009 - 02:25
User Badges:
  • Silver, 250 points or more

Hi



I think you have the BGP command :-

bgp redistribute-internal missing


under your router bgp config

bgl-group Mon, 02/09/2009 - 02:36
User Badges:

Thanks I will have a look at that and try it out of hours - possibly no risk to the network but would feel safer doing it then...

peterlmyers Mon, 02/09/2009 - 02:48
User Badges:

You are also missing the 'subnets' keyword on your BGP redistribution, this is required so allow classless networks through


Cheers

bgl-group Tue, 02/10/2009 - 05:29
User Badges:

I am not able to test this yet. I can't get a change window until 6AM on Friday but will let you know once the code is in place.

bgl-group Thu, 02/12/2009 - 22:58
User Badges:

In a word no.


Once the commands were loaded we had a routing loop in the network which killed all of the external sites via BGP as well. This was after I put a cost of 200 on the redistributed routes to try and keep the new data suppressed and not overriding the main routing table.


Having to rethink and replan this one now.


Giles

Actions

This Discussion