Cisco Switches

2013年7月17日星期三

EIGRP Feasible Successor Election

Question:

I have a quick question Catalyst Switches Price regarding Feasible Successor election process.

I've read that Feasibility Condition is AD<FD

So for example we have the ff feasible distances on R1

(Cost+AD)

R2 10 + 11 = 21 (Successor)

R3 4 + 20 = 24

R4 6 + 19 = 25

Which would be chosen as the Feasible Successor?

In this case, we have 2 entries which satisfies the condition: 20<21 ; 19<21

Will it be both R3 & R4?

If yes, will R3 be more prioritized as the backup route when R2 goes down since it has the lesser metric?

Answer:

I've read that Feasibility Condition is AD<FD

Correct.

So for example we have the ff feasible distances on R1

Be careful here. There are two very strong misunderstandings about the feasible distance:

Some sources say that the feasible distance is the current lowest distance to the destination. This is wrong. Such a distance is simply the current distance.

Some other sources say that the feasible distance is the distance to the destination via a particular neighbor. This is also wrong. Such a distance is called computed distance or total distance.

In reality, the feasible distance is the historical (i.e. not necessarily current) lowest distance to the destination. The history starts anew when the route goes from Active to Passive state. In other words, the feasible distance is a record of the lowest distance since the last time the route entered the Passive state. It is not necessarily equal to the current lowest distance, and most certainly, there is no per-neighbor feasible distance.

In this sense, the feasibility condition says: "If a router is closer to the destination than I have ever been (now or in the past), it can not be on a routing loop."

R2 10 + 11 = 21 (Successor)

R3 4 + 20 = 24

R4 6 + 19 = 25

Which would be chosen as the Feasible Successor?

Assuming that there was no shorter path since the last time the route entered the Passive state, the feasible distance is 21. Every neighbor whose reported distance is less than 21 is a feasible successor. So in this case, both R3 and R4 would be feasible successors.

If yes, will R3 be more prioritized as the backup route when R2 goes down since it has the lesser metric?

Yes, R3 would be the next choice after R2 fails because the total distance through R3 is the next best.

Note a different thing: assume that the costs are as follows:

R2 10 + 11 = 21 (Successor)

R3 4 + 20 = 24 (feasible successor)

R4 6 + 19 = 25 (feasible successor)

R5 1 + 22 = 23

R3 and R4 are feasible successors. R5 is not a feasible successor because it does not meet the feasibility condition, yet, in case R2 fails, R5 provides the next least-cost path.

Most textbooks about EIGRP say that if the successor fails, we'll start using the feasible successor that provides the next shortest path. In this case, it would be R3 - however, the total distance through R3 is 24 while R5, it would be just 23. Staying with R3 would actually cause EIGRP to hang on a worse path than which is currently available.

So what really happens is that if the successor fails, the router will first look up the neighbor that appears to provide the next least-cost path - in this case, R5 - and only then it verifies whether it meets the feasibility condition. If it does, we start using it right away. If it does not, as in this case, we will not start using it, nor will we start using R3. Instead, we will enter the Active state and start sending queries, trying to find out if the R5 is really an appropriate next hop and can be promoted to the successor role. If it can, then after receiving all replies, the feasible distance can be reset and set to the new minimum which is now 23, thereby allowing R5 to pass the feasibility distance and to become the next successor.

Not quite an easy thing to digest, I know, but this is really what happens inside EIGRP.

You're welcome to Catalyst Switches ask further!

Failover question

Question:

I’d like to ask some failover WS-C3560V2-24PS-S question. Please help me with it.

Thanks in advance.

In my network, the network is working well. It can ping 4.2.2.2. In order to test failover,

I shut down the interface Gi 1/12 of Core1 switch. After this,

From Host, it can ping the router 1 outside interface IP, X.X.X.X

And router 1 outside interface can ping 4.2.2.2

But the host is NOT able to ping 4.2.2.2.

And I found that the ASA outside interface can ping 4.2.2.2, but ping 4.2.2.2 with ASA inside interface does NOT work.

I have no idea how to troubleshoot it.

So please help me

Thank you very very much

router config :

……….

no aaa new-model

ip cef

ip domain round-robin

ip domain name aaaaa

ip name-server 4.2.2.2

multilink bundle-name authenticated

2013年7月16日星期二

Internet access for users in remote location

Question:

i configured MPLS vpn for remote Cisco 3560 Switch locations using cisco 881 at remote side and cisco 2811 on our head-office side with a ip vpn service provider.

the remote user is able to access head office network.

now the problem is he needs internet access, which i only know the way is we have allow him to use head office internet connection or another MPLS vpn tunnel with service provider for internet connection which will be a huge cost.

whcih our office reluctent to give.

now i am looking for a way to get the internet traffic out from the modem connected to his router cisco 881 and the head- office traffic to go on MPLS vpn

now the traffice flow is like

remote user-------->cisco 881------>internet modem------------------>serivce provide netowrk----------------->head office(cisco 2811)----------->Servers

Any help will be highly appriciated

Answer:

sorry that i didn't say it clearly, you should ping 192.168.1.1 from remote user's computer only after you configure default route to internet (ip route 0.0.0.0 0.0.0.0 192.168.1.1) but not when tunnel is up.

for nat, TRY this out:

access-list 2000 deny ip any HO_net1

access-list 2000 deny ip any YOUR_HEAD_OFFICE_SUBNET2

access-list 2000 permit ip any any

interface FastEthernet4

ip nat outside

interface Vlan1

ip nat inside

ip nat inside source list 2000 interface FastEthernet4 overload

verify nat:

sh access-list

sh nat Cisco 3560

2013年7月14日星期日

Cisco Router 2900 not able to access any DSL commands for ADSL2/2+ or 1ADSL

Question:

When i enter configuration mode Cisco 3560 for ATM any DSL commands are not recognized. Believe i have the right IOS. Any suggestions will help.

ROM: System Bootstrap, Version 15.0(1r)M15, RELEASE SOFTWARE (fc1)
System image file is "flash0:c2900-universalk9-mz.SPA.151-4.M4.bin"
Last reload type: Normal Reload

version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Router
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
!
no ipv6 cef
ip source-route
ip cef
!
multilink bundle-name authenticated
!
vpdn enable
!
redundancy
!
controller VDSL 0/1/0
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
ip address 218.12.1.1 255.255.255.0
ip nat inside
no ip virtual-reassembly in
duplex auto
speed auto
!
interface GigabitEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface GigabitEthernet0/2
no ip address
shutdown
duplex auto
speed auto
!
interface ATM0/1/0
no ip address
atm bandwidth dynamic
no atm ilmi-keepalive
pvc 0/35
pppoe-client dial-pool-number 1
!
!
interface Ethernet0/1/0
no ip address
shutdown
no fair-queue
!
interface GigabitEthernet0/0/0
no ip address
!
interface GigabitEthernet0/0/1
no ip address
!
interface GigabitEthernet0/0/2
no ip address
!
interface GigabitEthernet0/0/3
no ip address
!
interface Vlan1
no ip address
!
interface Vlan6
no ip address
!
interface Dialer1
description hwic1
mtu 1492
ip address negotiated
ip nat outside
ip virtual-reassembly in
encapsulation ppp
dialer pool 1
keepalive 300
ppp chap hostname @att.net
ppp chap password 0
ppp pap sent-username @att.net password 0
!
ip forward-protocol nd
!
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
ip nat inside source list 1 interface Dialer1 overload
ip route 0.0.0.0 0.0.0.0 Dialer1
!
access-list 1 permit 218.12.1.0 0.0.0.255
dialer-list 1 protocol ip permit
!
control-plane
!
scheduler allocate 20000 1000
Sent from Cisco Technical Support iPad App

Answer:

check your config/hardware

"controller VDSL 0/1/0"

its a VDSL and not ADSL, for the option that you are looking for are available depending on the card , some cards are VA which has VDSL as well as ADSL some are just V(ie VDSL)

Hence check what your current hardwar is Cisco 3560V2 Price or what you are looking for.

http://www.cisco.com/en/US/docs/routers/access/interfaces/software/feature/guide/vdsl2_hwic.pdf

2013年7月3日星期三

how to configure ipsla monitor in IOS XR Software, Version 4.2.3?

Question:

how to configure ipsla WS-C3750X-48P-L Price monitor in IOS XR Software, Version 4.2.3?

I don't see ipsla commands in IOS XR Software, Version 4.2.3. Any other ways to detect ethernet WAN links to trigger HSRP on ASR 9000 series routers? I don't even see track commands.

RP/0/RSP0/CPU0:grx-rtr2(config)#ip

iphc ipv4 ipv6

RP/0/RSP0/CPU0:grx-rtr2(config)#t

tacacs-server tacacs taskgroup tcam

tcp telnet template tftp

Answer:

1. configure

2. track track-name

3. type line-protocol state

4. interface type interface-path-id

5. exit

6. (Optional) delay {up seconds|down seconds}

7. Use one of the following commands:

end

commit

Please see if the commands in this link are available to you on cli

http://www.cisco.com/en/US/docs/routers/asr9000/software/asr9k_r4.2/system_management/configuration/guide/b_sysman_cg42asr9k_chapter_01110.html

And then to use the track command in HSRP

hsrp [group-number] track type interface-path-id [priority-decrement]

I'm not sure if these are required.

As demonstrated here:

RP/0/0/CPU0:router(config)# router hsrp

RP/0/0/CPU0:router(config-hsrp)# interface TenGigE 0/2/0/1

RP/0/0/CPU0:router(config-hsrp-if)# hsrp track TenGigE 0/1/0/1

RP/0/0/CPU0:router(config-hsrp-if)# hsrp track TenGigE 0/3/0/1

RP/0/0/CPU0:router(config-hsrp-if)# hsrp preempt

RP/0/0/CPU0:router(config-hsrp-if)# hsrp ipv4 192.92.72.46 WS-C3750X-24S-S

http://www.cisco.com/en/US/docs/routers/asr9000/software/asr9k_r3.9/addr_serv/command/reference/irasr9khsrp.html#wp999728

Cisco 2821 for home office use & voip?

Question:

Would the above router be Catalyst 3560X Price a good choise for a home office setup for use with WAN speeds upto 30Mbps and VOIP?

Any other, preferable serjestionns welcomed?

Thanks in advance for any input.

Answer:

With 2821 you will be able to go up to 87Mbps.

http://www.cisco.com/web/partners/downloads/765/tools/quickreference/routerperformance.pdf

This router should handle Catalyst 3560X everything you need for home office and VoIP.

2013年7月1日星期一

Redistribute 0.0.0.0 0.0.0.0 route only on Eigrp

Question:

I have configured the Catalyst Switches eigrp routing protocol. At the main router I have many static routes and I want to redistribute only the default route (0.0.0.0 0.0.0.0). But now every static route is distributed on each router. How to distribute the default route only.

I have got the backup router of the main router and I want to redistribute the R1 default route only to other routers and in the failure of R2 I want to redistribue the R2 default route to other routers. The destination of default route of R1 and R2 is different. Is this possible or not.

Answer:

if you want to redistribute the default route only:

ip prefix-list REDIST_STATIC permit 0.0.0.0/0

route-map REDIST_STATIC permit 10

match ip add prefix REDIST_STATIC

router eigrp 10

redistribute static route-map Cisco 3560 Price REDIST_STATIC

订阅：博文 (Atom)