文章/答案/技术大牛

发布

社区首页 >问答首页 >BGP Juniper不向思科反映？

问BGP Juniper不向思科反映？
EN

Network Engineering用户

提问于 2019-01-02 19:19:57

回答 1查看 523关注 0票数 1

我真的是新的工作与杜松子，我是有点挣扎的路线反射器的配置。

我有3台路由器思科-Juniper-Juniper 2

这是我的配置: Cisco：

 router bgp 100 
 neighbor 10.255.255.1 remote-as 100
 neighbor 10.255.255.1 update-source Loopback0
 neighbor 10.255.255.1 route-reflector-client
 neighbor 10.255.255.1 next-hop-self all
 neighbor 10.255.255.1 send-label
 neighbor 10.255.255.3 remote-as 100
 neighbor 10.255.255.3 update-source Loopback0
 neighbor 10.255.255.3 next-hop-self all
 neighbor 10.255.255.3 send-label

杜松：

bgp {
    group ibgp {
        type internal;
        local-address 10.255.255.3;
        family inet {
            labeled-unicast;
        }
        export next-hop-self;
        cluster 10.255.255.3;
        peer-as 100;
        neighbor 10.255.255.2;
        neighbor 10.255.255.4;
    }
}

policy-options {
policy-statement next-hop-self {
    term 1 {
        from route-type internal;
        then {
            next-hop self;
        }
    }
}

}

Juniper2：

bgp {
    group ibgp {
        type internal;
        local-address 10.255.255.4;
        family inet {
            labeled-unicast;        
        }
        export BGP_import_Lo0;
        peer-as 100;
        neighbor 10.255.255.3;
    }
}

policy-options {
policy-statement BGP_import_Lo0 {
    from {
        route-filter 10.255.255.4/32 exact;
    }
    then accept;
}

这是一个SeamlessMPLS尝试，而Cisco + Juniper在IS- is，Juniper + Juniper2在OSPF中

使用Loopback0接口连接BGP。

在这3台计算机之前，还有另一台Cisco机器在使用网络10.255.255.255.1掩码255.255.255.255发布通往BGP的路由广告。

路由10.255.255.1使用该集群使用正确的下一跳(到Cisco-> Juniper2 works)到达Juniper 2。

Juniper> show route advertising-protocol bgp 10.255.255.4
inet.0: 12 destinations, 13 routes (12 active, 0 holddown, 0 hidden)
  Prefix                  Nexthop              MED     Lclpref    AS path
* 10.255.255.1/32         Self                 0       100        I

但是Juniper2 ->思科不起作用

Juniper> show route receive-protocol bgp 10.255.255.4
inet.0: 12 destinations, 13 routes (12 active, 0 holddown, 0 hidden)
  Prefix                  Nexthop              MED     Lclpref    AS path
  10.255.255.4/32         10.255.255.4                 100        I

这条路永远不能通过Juniper到Cisco

所以，我猜想，在从Juniper到Cisco的反思中，我是不是错过了什么？因为思科从未听说过10.255.255.4/32

有没有人能理清原因呢？提前谢谢你！

编辑我可能过分简化了描述变得更糟..。好了，开始吧:这是我的拓扑结构

ABR2是Juniper

PE2是Juniper

ABR1和ABR2 Lo0在OSPF和IS-IS

每个IGP区域都运行MPLS。

在IGP区域之间没有再分配。

我试图在PE1和PE2之间使用SeamlessMPLS建立LSP。

PE1 Lo0为10.255.255.1/32，它通过2 RRs (ABR1和ABR2)到达PE2

我能够将Lo0 of PE1 (10.255.255.1/32)通过ABR2映射到PE2

但我无法通过PE2s Lo0通过ABR2向ABR1反映

顺便说一下，每个路由器都与最近的路由器相邻，所以ABR1有PE1和ABR2作为邻居，ABR2有ABR1和PE2。诸若此类

PE1：

PE1_2#sh run
Building configuration...

Current configuration : 2268 bytes
!
! Last configuration change at 20:01:09 UTC Wed Jan 2 2019
!
version 15.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname PE1_2
!
boot-start-marker
boot-end-marker
!
aqm-register-fnf
!
!
no aaa new-model
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
no ip icmp rate-limit unreachable
!
!
!
!
!
!
!
!


!
!
!
!
no ip domain lookup
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!         
!
!
!
!
!
redundancy
!
!
ip tcp synwait-time 5
! 
!
!
!
!
!
!
!
!
!
!
!
!
interface Loopback0
 ip address 10.255.255.1 255.255.255.255
 ip ospf 1 area 0
!
interface Ethernet0/0
 ip address 10.0.1.1 255.255.255.0
 ip ospf network point-to-point
 ip ospf 1 area 0
 mpls ip
!
interface Ethernet0/1
 no ip address
 shutdown
!
interface Ethernet0/2
 no ip address
 shutdown
!
interface Ethernet0/3
 no ip address
 shutdown
!
interface Ethernet1/0
 no ip address
 shutdown
!
interface Ethernet1/1
 no ip address
 shutdown
!
interface Ethernet1/2
 no ip address
 shutdown
!
interface Ethernet1/3
 no ip address
 shutdown
!
interface Serial2/0
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial2/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial2/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial2/3
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/0
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 1
 passive-interface Loopback0
 network 10.255.255.1 0.0.0.0 area 0
!
router bgp 100
 bgp log-neighbor-changes
 network 10.255.255.1 mask 255.255.255.255
 neighbor 10.255.255.2 remote-as 100
 neighbor 10.255.255.2 update-source Loopback0
 neighbor 10.255.255.2 send-label
!
ip forward-protocol nd
!
!
no ip http server
no ip http secure-server
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
line con 0
 exec-timeout 0 0
 privilege level 15
 logging synchronous
line aux 0
 exec-timeout 0 0
 privilege level 15
 logging synchronous
line vty 0 4
 login
 transport input none
!
!
end

ABR1：

ABR1_2#sh run
Building configuration...

Current configuration : 2552 bytes
!
! Last configuration change at 17:58:29 UTC Wed Jan 2 2019
!
version 15.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname ABR1_2
!
boot-start-marker
boot-end-marker
!
aqm-register-fnf
!
!
no aaa new-model
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
no ip icmp rate-limit unreachable
!
!
!
!
!
!
!
!


!
!
!
!
no ip domain lookup
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!         
!
!
!
!
!
redundancy
!
!
ip tcp synwait-time 5
! 
!
!
!
!
!
!
!
!
!
!
!
!
interface Loopback0
 ip address 10.255.255.2 255.255.255.255
 ip router isis 
 ip ospf 1 area 0
!
interface Ethernet0/0
 ip address 10.0.2.1 255.255.255.252
 ip router isis 
 mpls ip
!
interface Ethernet0/1
 ip address 10.0.1.2 255.255.255.0
 ip ospf network point-to-point
 ip ospf 1 area 0
 mpls ip
!
interface Ethernet0/2
 no ip address
 shutdown
!
interface Ethernet0/3
 no ip address
 shutdown
!         
interface Ethernet1/0
 no ip address
 shutdown
!
interface Ethernet1/1
 no ip address
 shutdown
!
interface Ethernet1/2
 no ip address
 shutdown
!
interface Ethernet1/3
 no ip address
 shutdown
!
interface Serial2/0
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial2/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial2/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial2/3
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/0
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/1
 no ip address
 shutdown
 serial restart-delay 0
!         
interface Serial3/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 1
!
router isis
 net 49.0001.0102.5525.5002.00
!
router bgp 100
 bgp log-neighbor-changes
 neighbor 10.255.255.1 remote-as 100
 neighbor 10.255.255.1 update-source Loopback0
 neighbor 10.255.255.1 route-reflector-client
 neighbor 10.255.255.1 next-hop-self all
 neighbor 10.255.255.1 send-label
 neighbor 10.255.255.3 remote-as 100
 neighbor 10.255.255.3 update-source Loopback0
 neighbor 10.255.255.3 route-reflector-client
 neighbor 10.255.255.3 next-hop-self all
 neighbor 10.255.255.3 send-label
!
ip forward-protocol nd
!
!
no ip http server
no ip http secure-server
!
!
!
!
control-plane
!
!
!
!
!
!
!
!         
line con 0
 exec-timeout 0 0
 privilege level 15
 logging synchronous
line aux 0
 exec-timeout 0 0
 privilege level 15
 logging synchronous
line vty 0 4
 login
 transport input none
!
!
end

P：

P_2#sh run
Building configuration...

Current configuration : 2026 bytes
!
! Last configuration change at 20:02:07 UTC Wed Jan 2 2019
!
version 15.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname P_2
!
boot-start-marker
boot-end-marker
!
aqm-register-fnf
!
!
no aaa new-model
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
no ip icmp rate-limit unreachable
!
!
!
!
!
!
!
!


!
!
!
!
no ip domain lookup
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!         
!
!
!
!
!
redundancy
!
!
ip tcp synwait-time 5
! 
!
!
!
!
!
!
!
!
!
!
!
!
interface Loopback0
 ip address 3.3.3.3 255.255.255.255
 ip router isis 
!
interface Ethernet0/0
 ip address 10.0.2.5 255.255.255.252
 ip router isis 
 mpls ip
!
interface Ethernet0/1
 ip address 10.0.2.2 255.255.255.252
 ip router isis 
 mpls ip
!
interface Ethernet0/2
 no ip address
 shutdown
!
interface Ethernet0/3
 no ip address
 shutdown
!
interface Ethernet1/0
 no ip address
 shutdown
!
interface Ethernet1/1
 no ip address
 shutdown
!
interface Ethernet1/2
 no ip address
 shutdown
!
interface Ethernet1/3
 no ip address
 shutdown
!
interface Serial2/0
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial2/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial2/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial2/3
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/0
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/3
 no ip address
 shutdown
 serial restart-delay 0
!
router isis
 net 49.0001.0030.0300.3003.00
!
ip forward-protocol nd
!
!
no ip http server
no ip http secure-server
!
!
!
!
control-plane
!
!         
!
!
!
!
!
!
line con 0
 exec-timeout 0 0
 privilege level 15
 logging synchronous
line aux 0
 exec-timeout 0 0
 privilege level 15
 logging synchronous
line vty 0 4
 login
 transport input none
!
!
end

ABR2：

root# run show configuration 
## Last commit: 2019-01-02 18:41:19 UTC by root
version 17.3R1.10;
system {
    syslog {
        user * {
            any emergency;
        }
        file messages {
            any notice;
            authorization info;
        }
        file interactive-commands {
            interactive-commands any;
        }
    }
    ## Warning: missing mandatory statement(s): 'root-authentication'
}
interfaces {
    em0 {
        unit 0 {
            family inet {
                address 10.0.3.1/24;
            }
            family mpls;                
        }
    }
    em1 {
        unit 0 {
            family inet {
                address 10.0.2.6/30;
            }
            family iso;
            family mpls;
        }
    }
    lo0 {
        unit 0 {
            family inet {
                address 10.255.255.3/32;
            }
            family iso {
                address 49.0001.0102.5525.5003.00;
            }
        }
    }
}
routing-options {                       
    autonomous-system 100;
}
protocols {
    mpls {
        interface em1.0;
        interface em0.0;
    }
    bgp {
        group ibgp {
            type internal;
            local-address 10.255.255.3;
            family inet {
                labeled-unicast;
            }
            export next-hop-self;
            cluster 10.255.255.3;
            peer-as 100;
            neighbor 10.255.255.2;
            neighbor 10.255.255.4;
        }
    }
    isis {
        interface em1.0;                
        interface lo0.0;
    }
    ospf {
        area 0.0.0.0 {
            interface em0.0;
            interface lo0.0;
        }
    }
    ldp {
        interface em0.0;
        interface em1.0;
    }
}
policy-options {
    policy-statement next-hop-self {
        term 1 {
            from route-type internal;
            then {
                next-hop self;
            }
        }
    }
}

PE2：

root# run show configuration    
## Last commit: 2019-01-02 17:23:09 UTC by root
version 17.3R1.10;
system {
    syslog {
        user * {
            any emergency;
        }
        file messages {
            any notice;
            authorization info;
        }
        file interactive-commands {
            interactive-commands any;
        }
    }
    ## Warning: missing mandatory statement(s): 'root-authentication'
}
interfaces {
    em1 {
        unit 0 {
            family inet {
                address 10.0.3.2/24;
            }
            family mpls;                
        }
    }
    lo0 {
        unit 0 {
            family inet {
                address 10.255.255.4/32;
            }
        }
    }
}
routing-options {
    autonomous-system 100;
}
protocols {
    mpls {
        interface em1.0;
    }
    bgp {
        group ibgp {
            type internal;
            local-address 10.255.255.4;
            family inet {
                labeled-unicast;        
            }
            export BGP_import_Lo0;
            peer-as 100;
            neighbor 10.255.255.3;
        }
    }
    ospf {
        area 0.0.0.0 {
            interface em1.0;
            interface lo0.0;
        }
    }
    ldp {
        interface em1.0;
    }
}
policy-options {
    policy-statement BGP_import_Lo0 {
        from {
            route-filter 10.255.255.4/32 exact;
        }
        then accept;
    }                                   
}

bgp

juniper

mpls

cisco

routing

回答 1

Network Engineering用户

发布于 2019-01-02 20:05:27

我现在知道问题出在哪里了..。

问题是Juniper和Cisco的行为有很大不同

思科:如果你已经了解了一条BGP路由，但它已经在路由表中了(例如IGP)，思科仍然会认为它是BGP中最好的，但是向您展示了一个肋骨故障，但仍然会反映给RR客户端。

Juniper:如果您了解了BGP路由，但它已经在路由表中(例如IGP)，如果它没有用于路由，它将不会反映它。

我必须更改首选项，以便在路由表中使用BGP路由而不是OSPF路由。

票数 4

页面原文内容由Network Engineering提供。腾讯云小微IT领域专用引擎提供翻译支持

原文链接：

https://networkengineering.stackexchange.com/questions/55822

复制

相似问题

问BGP Juniper不向思科反映？
EN

回答 1

Network Engineering用户

社区

活动

圈层

关于

腾讯云开发者

热门产品

热门推荐

更多推荐

问BGP Juniper不向思科反映？EN

回答 1

Network Engineering用户

社区

活动

圈层

关于

腾讯云开发者

热门产品

热门推荐

更多推荐

问BGP Juniper不向思科反映？
EN