Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
397
Views
3
Helpful
6
Replies

IBGP Next Hop Strange Behaviour

Keith Alman
Level 1
Level 1

‎04-11-2006 08:20 AM - edited ‎03-03-2019 12:22 PM

Chaps,

Consider the following scenario: An AS with multiple (lots) internal routers exchanging information via EIGRP. Out of these routers, two are border, with EBGP feeds to upstream providers. One of these routers is used as a default entry/exit point, whilst the other is used to lab purposes. A third router, somewhere in the depth of the network, requires a BGP routing table.

Neighbors (ibgp) between this third router and the "lab" border router have been established, with a lovely set of Internet routes reciding on the third router. The next hop of the ibgp routes are pointing towards the loopback of the "lab" border router. Everything seems absolutley fine. All loopbacks are reachable via the IGP, and from any BGP router.

Now, When I trace from the third router (from an interface address which is been announced via the "lab" border router to upstream) it decides to follow the candidate default route located on next-igp-hop (a pure igp router), exiting via the wrong border router, not the one specified by the BGP NEXT HOP.

I've checked the administrative distances, and they seem to be fine (perhaps not).

I'm confused, why could this be happenening? Any feedback would be greatly appreciated.

Thanks in advance.

Jansen

Labels:
0 Helpful
6 Replies 6

sundar.palaniappan
Level 10
Level 10

‎04-11-2006 09:33 AM

I assume, the 3rd IBGP router is peering with the lab router's loopback interface through multiple IGP hops in between them. Your gateway on the 3rd IBGP router might be pointing to the lab router but the non-bgp (eigrp) routers on the path might be using a default route to point to the primary EBGP router and hence, the routing doesn't the work the way you intend it to be. That's the reason one of the BGP requirement is to have full mesh or workaround that using confederation/route reflector configuration. Another option is to redistribute BGP into EIGRP and that mightn't be practical if you are learning full/partial internet routing table from your ISPs.

Pls. rate all helpful posts.

HTH,

Sundar

Keith Alman
Level 1
Level 1
In response to sundar.palaniappan

‎04-11-2006 11:12 AM

Sundar,

Sure it helps - I did think that what I was doing defied all "next-hop" rules.

So to recap, the only *feasible* way is to use RR's?

Thank you

0 Helpful

sundar.palaniappan
Level 10
Level 10
In response to Keith Alman

‎04-11-2006 04:05 PM

Jansen,

RRs are ideal for a small BGP network. However, if your's is an enterprise network, then you would have to go for confederation (sub-ASs) within your AS.

If you are unable to redistribute the BGP routes into EIGRP then you would have to create a full mesh using one of the two techniques mentioned above for all the routers to choose the optimal path out to the Internet.

Pls. rate all helpful posts.

HTH,

Sundar

0 Helpful

Harold Ritter
Cisco Employee
Cisco Employee
In response to sundar.palaniappan

‎04-11-2006 04:36 PM

Sundar,

I don't completely agree on your statement on RR being ideal for small networks. I know quite a lot of large SPs using RRs and on the other hand very few running confederations.

Why do you recomemnd using a confederation on an entreprise network?

My 2 cents,

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México
0 Helpful

sundar.palaniappan
Level 10
Level 10
In response to Harold Ritter

‎04-11-2006 05:02 PM

Hritter,

Apprecaite your thoughts!

But, doesn't confederation make the BGP peering ideal for large scale networks? Wouldn't breaking a AS into many sub-ASs make it easy to manage. Ofcourse, the admin would have to be comfortable with the rules of BGP in a confed environment. Sure, you could have RRs within the sub-ASs. A flat AS with no sub-ASs and just RRs doesn't sound like a great idea to me.

My 2 cents.

Rgds,

Sundar

0 Helpful

Harold Ritter
Cisco Employee
Cisco Employee
In response to sundar.palaniappan

‎04-11-2006 06:33 PM

Sundar,

I have seen networks with close to a thousand nodes running RRs with no issue whatsoever. The argumentation about confederation being more scalable than RR has been put aside in favor of simplicity.

You can scale with RR too using multiple level of RRs if need be.

I doubt that an entreprise network would ever need to consider confederation since I have never ever seen an entreprise network running iBGP on all routers in the AS. That sounds to me like it would constitute a complex network to operate, which at best would potentially be suitable for an SP with experienced operation folks but rather overwhelming for an entreprise customer.

Cheers,

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card