http://m.getsatisfaction.com/topics/7737117 eBGP MultiHop Problem 2018-05-21T14:14:15Z 2018-05-17T22:09:17Z 7737117 http://m.getsatisfaction.com/topics/7737117 7737117 eBGP MultiHop Problem 2018-05-21T14:14:15Z 2018-05-17T22:09:17Z scott pledger http://m.getsatisfaction.com/people/9666775 https://www.gravatar.com/avatar/80de74a0b10cab884c2600e5e7c2e831?d=identicon&s=55&r=PG scott_pledger i am trying to set up peering between 2 cumulus devices seperated by 3 routers. <br />my setup is as follows : <br />CumulusA -&gt; router-&gt;router-&gt;router-&gt;CumulusB<br /><br />I have all the routes in between to reach the loopbacks of Cumulus A and B . <br />I am sourcing my ebgp session from the loopbacks of each. <br /><br />the eBGP session is in ACTIVE state on both sides . <br />Any ideas ?<br />the loopback of CumulusA is 10.10.1.1<br />the loopback of CumulusB is 10.30.1.1<br /><br />here is my config for the 2 Cumulus Boxes : <br />CumulusA-<br />router bgp 65000<br />&nbsp; bgp router-id 10.10.1.1<br />&nbsp; coalesce-time 1000<br />&nbsp; neighbor 10.30.1.1 remote-as 65001<br />&nbsp; neighbor 10.30.1.1 ebgp-multihop 255<br />&nbsp; neighbor 10.30.1.1 update-source loopback<br /><br />&nbsp; address-family ipv4 unicast<br />&nbsp;&nbsp;&nbsp; network 10.10.0.0/16<br /><br /><br />CumulusB-<br />router bgp 65001<br />&nbsp; bgp router-id 10.30.1.1<br />&nbsp; coalesce-time 1000<br />&nbsp; neighbor 10.10.1.1 remote-as 65000<br />&nbsp; neighbor 10.10.1.1 ebgp-multihop 255<br />&nbsp; neighbor 10.10.1.1 update-source loopback<br /><br />&nbsp; address-family ipv4 unicast<br />&nbsp;&nbsp;&nbsp; network 10.30.0.0/16 problem 12 2 1 comment http://m.getsatisfaction.com/topics/7737117/replies/19530551 http://m.getsatisfaction.com/topics/7737117 19530551 Jason Guy responded to "eBGP MultiHop Problem" 2018-05-18T12:43:24Z 2018-05-18T12:43:24Z Jason Guy http://m.getsatisfaction.com/people/7610836 https://d2r1vs3d9006ap.cloudfront.net/public/uploaded_images/10572443/photo_medium.jpg jason_guy There is likely no interface named "loopback" in linux, it will likely work if you set the update-source to "lo" or specify the address. 0 http://m.getsatisfaction.com/topics/7737117/replies/19531425 http://m.getsatisfaction.com/topics/7737117 19531425 scott pledger responded to "eBGP MultiHop Problem" 2018-05-18T19:04:40Z 2018-05-18T19:04:40Z scott pledger http://m.getsatisfaction.com/people/9666775 https://www.gravatar.com/avatar/80de74a0b10cab884c2600e5e7c2e831?d=identicon&s=55&r=PG scott_pledger Jason , thanks for the reply !<br />i updated my source to "lo" on both sides , still no go. <br />Also changed the source to the actual ip of the loopback on both sides, still no luck. <br />Below are my full configs. And again sourcing each loopback in a ping i can ping the other loopback , communication is there. I am running this in GNS3, btw. <br /><br />CumulusA Config : <br />interface lo<br />&nbsp; address 10.10.1.1/32<br /><br />interface eth0<br /><br />interface swp1<br />&nbsp; bridge-access 100<br /><br />interface bridge<br />&nbsp; bridge-ports swp1<br />&nbsp; bridge-vids 100<br />&nbsp; bridge-vlan-aware yes<br /><br />interface vlan100<br />&nbsp; address 172.31.1.1/28<br />&nbsp; vlan-id 100<br />&nbsp; vlan-raw-device bridge<br /><br />hostname DC1Cumulus<br /><br />frr version 3.2+cl3u4<br /><br />frr defaults datacenter<br /><br />username cumulus nopassword<br /><br />service integrated-vtysh-config<br /><br />log syslog informational<br /><br />vrf Default-IP-Routing-Table<br /><br />router bgp 65000<br />&nbsp; bgp router-id 10.10.1.1<br />&nbsp; coalesce-time 1000<br />&nbsp; neighbor 10.30.1.1 remote-as 65001<br />&nbsp; neighbor 10.30.1.1 ebgp-multihop 255<br />&nbsp; neighbor 10.30.1.1 update-source lo<br /><br />&nbsp; address-family ipv4 unicast<br />&nbsp;&nbsp;&nbsp; network 10.10.0.0/16<br /><br />ip route 0.0.0.0/0 172.31.1.2<br />line vty<br /><br />dot1x<br />&nbsp; mab-activation-delay 30<br />&nbsp; eap-reauth-period 0<br /><br />&nbsp; radius<br />&nbsp;&nbsp;&nbsp; accounting-port 1813<br />&nbsp;&nbsp;&nbsp; authentication-port 1812<br /><br />time<br /><br />&nbsp; zone<br />&nbsp;&nbsp;&nbsp; Etc/UTC<br /><br />&nbsp; ntp<br /><br />&nbsp;&nbsp;&nbsp; servers<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 0.cumulusnetworks.pool.ntp.org iburst<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 1.cumulusnetworks.pool.ntp.org iburst<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 2.cumulusnetworks.pool.ntp.org iburst<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 3.cumulusnetworks.pool.ntp.org iburst<br /><br />&nbsp;&nbsp;&nbsp; source<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; eth0<br /><br />dns<br /><br />&nbsp; nameserver<br />&nbsp;&nbsp;&nbsp; 10.20.249.1<br /><br />snmp-server<br />&nbsp; listening-address localhost<br /><br />#####################################<br />CumulusB Config:<br />interface lo<br />&nbsp; address 10.30.1.1/32<br /><br />interface eth0<br />&nbsp; address dhcp<br /><br />interface swp1<br />&nbsp; bridge-access 100<br /><br />interface bridge<br />&nbsp; bridge-ports swp1<br />&nbsp; bridge-vids 100<br />&nbsp; bridge-vlan-aware yes<br /><br />interface vlan100<br />&nbsp; address 172.31.3.1/28<br />&nbsp; vlan-id 100<br />&nbsp; vlan-raw-device bridge<br /><br />hostname cumulus<br /><br />frr version 3.2+cl3u4<br /><br />frr defaults datacenter<br /><br />username cumulus nopassword<br /><br />service integrated-vtysh-config<br /><br />log syslog informational<br /><br />vrf Default-IP-Routing-Table<br /><br />router bgp 65001<br />&nbsp; bgp router-id 10.30.1.1<br />&nbsp; coalesce-time 1000<br />&nbsp; neighbor 10.10.1.1 remote-as 65000<br />&nbsp; neighbor 10.10.1.1 ebgp-multihop 255<br />&nbsp; neighbor 10.10.1.1 update-source lo<br /><br />&nbsp; address-family ipv4 unicast<br />&nbsp;&nbsp;&nbsp; network 10.30.0.0/16<br /><br />ip route 0.0.0.0/0 172.31.3.2<br />line vty<br /><br />dot1x<br />&nbsp; mab-activation-delay 30<br />&nbsp; eap-reauth-period 0<br /><br />&nbsp; radius<br />&nbsp;&nbsp;&nbsp; accounting-port 1813<br />&nbsp;&nbsp;&nbsp; authentication-port 1812<br /><br />time<br /><br />&nbsp; zone<br />&nbsp;&nbsp;&nbsp; Etc/UTC<br /><br />&nbsp; ntp<br /><br />&nbsp;&nbsp;&nbsp; servers<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 0.cumulusnetworks.pool.ntp.org iburst<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 1.cumulusnetworks.pool.ntp.org iburst<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 2.cumulusnetworks.pool.ntp.org iburst<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 3.cumulusnetworks.pool.ntp.org iburst<br /><br />&nbsp;&nbsp;&nbsp; source<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; eth0<br /><br />dns<br /><br />&nbsp; nameserver<br />&nbsp;&nbsp;&nbsp; 10.20.249.1<br /><br />snmp-server<br />&nbsp; listening-address localhost 0 http://m.getsatisfaction.com/topics/7737117/replies/19531491 http://m.getsatisfaction.com/topics/7737117/replies/19531425 19531491 scott pledger responded to "eBGP MultiHop Problem" 2018-05-18T19:39:37Z 2018-05-18T19:39:37Z scott pledger http://m.getsatisfaction.com/people/9666775 https://www.gravatar.com/avatar/80de74a0b10cab884c2600e5e7c2e831?d=identicon&s=55&r=PG scott_pledger just as a side note , i also tried ebgp mh peering between the swp1 addresses on both CumulusA and B . thought maybe it was a bug with a loopback sourcing . but that didnt work either . and both swp1 vlan 100 addresses are able to reach each other.&nbsp; 0 http://m.getsatisfaction.com/topics/7737117/replies/19533557 http://m.getsatisfaction.com/topics/7737117 19533557 scott pledger responded to "eBGP MultiHop Problem" 2018-05-20T14:25:25Z 2018-05-20T14:25:25Z scott pledger http://m.getsatisfaction.com/people/9666775 https://www.gravatar.com/avatar/80de74a0b10cab884c2600e5e7c2e831?d=identicon&s=55&r=PG scott_pledger Any other ideas ? It seems like a bug. 0 http://m.getsatisfaction.com/topics/7737117/replies/19533655 http://m.getsatisfaction.com/topics/7737117 19533655 Jason Guy responded to "eBGP MultiHop Problem" 2018-05-20T16:15:58Z 2018-05-20T16:15:58Z Jason Guy http://m.getsatisfaction.com/people/7610836 https://d2r1vs3d9006ap.cloudfront.net/public/uploaded_images/10572443/photo_medium.jpg jason_guy Hi Scott,<br />Did you try activating the neighbor under ipv4 address-family?<br /><br /><pre>router bgp 65000<br />&nbsp; address-family ipv4 unicast<br />&nbsp; &nbsp; neighbor 10&#46;30&#46;1&#46;1 activate<br />router bgp 65001<br />&nbsp; address-family ipv4 unicast<br />&nbsp; &nbsp; neighbor 10&#46;10&#46;1&#46;1 activate</pre> 0 http://m.getsatisfaction.com/topics/7737117/replies/19534135 http://m.getsatisfaction.com/topics/7737117/replies/19533655 19534135 scott pledger responded to "eBGP MultiHop Problem" 2018-05-20T23:40:26Z 2018-05-20T23:40:26Z scott pledger http://m.getsatisfaction.com/people/9666775 https://www.gravatar.com/avatar/80de74a0b10cab884c2600e5e7c2e831?d=identicon&s=55&r=PG scott_pledger Jason, Thanks for the suggestion. <br />I did add it under both switches : <br /><br />cumulus&nbsp; 2018-05-20 23:18:44.180932&nbsp; net add bgp ipv4 unicast neigh 10.30.1.1 activate<br />cumulus&nbsp; 2018-05-20 23:18:46.566245&nbsp; net commit<br /><br /><br />cumulus&nbsp; 2018-05-20 23:21:05.725257&nbsp; net add bgp ipv4 unicast neigh 10.10.1.1 activate<br />cumulus&nbsp; 2018-05-20 23:21:08.623310&nbsp; net commit<br /><br />However, when i do a net show config bgp , the "activate" doesnt show up on either switches : <br /><br />router bgp 65000<br />&nbsp; bgp router-id 10.10.1.1<br />&nbsp; coalesce-time 1000<br />&nbsp; neighbor 10.30.1.1 remote-as 65001<br />&nbsp; neighbor 10.30.1.1 ebgp-multihop 255<br />&nbsp; neighbor 10.30.1.1 update-source lo<br />&nbsp; neighbor 172.31.3.1 remote-as 65001<br />&nbsp; neighbor 172.31.3.1 ebgp-multihop 255<br /><br />&nbsp; address-family ipv4 unicast<br />&nbsp;&nbsp;&nbsp; network 10.10.0.0/16<br /><br />Not sure what else to do ... <br /><br />As a test i set up a simple normal eBGP peering session from Cumulus A to the upstream router, and that established with no problem. Just wanted to try a normal eBGP config to make sure i wasnt missing something. <br /><br />I looked in the manual for Cumulus and configured just as it said. <br />i did the neighbor with both remote-as external and remote-as &lt;AS Number&gt;&nbsp; and the only thing i added was 255 at the end of the ebgp multihop (ebgp-multihop 255). <br /><br />Any additional suggestions would be greatly appreciated . <br /><br />Thanks<br />-Scott 0 http://m.getsatisfaction.com/topics/7737117/replies/19534169 http://m.getsatisfaction.com/topics/7737117/replies/19533655 19534169 scott pledger responded to "eBGP MultiHop Problem" 2018-05-21T00:01:53Z 2018-05-21T00:01:53Z scott pledger http://m.getsatisfaction.com/people/9666775 https://www.gravatar.com/avatar/80de74a0b10cab884c2600e5e7c2e831?d=identicon&s=55&r=PG scott_pledger i also added neighbor &lt;neighbor address&gt; disable-connected-check to both switches, still no go . 0 http://m.getsatisfaction.com/topics/7737117/replies/19534179 http://m.getsatisfaction.com/topics/7737117/replies/19533655 19534179 scott pledger responded to "eBGP MultiHop Problem" 2018-05-21T00:12:43Z 2018-05-21T00:12:43Z scott pledger http://m.getsatisfaction.com/people/9666775 https://www.gravatar.com/avatar/80de74a0b10cab884c2600e5e7c2e831?d=identicon&s=55&r=PG scott_pledger also added - no bgp default ipv4-unicast<br /><br />after adding that and adding the activate, the neighbor activate command shows up in the config<br /><br />But still no dice : <br />&nbsp;show ip bgp sum<br /><br />IPv4 Unicast Summary:<br />BGP router identifier 10.10.1.1, local AS number 65000 vrf-id 0<br />BGP table version 0<br />RIB entries 1, using 152 bytes of memory<br />Peers 1, using 20 KiB of memory<br /><br />Neighbor&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; V&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; AS MsgRcvd MsgSent&nbsp;&nbsp; TblVer&nbsp; InQ OutQ&nbsp; Up/Down State/PfxRcd<br />10.30.1.1&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 4&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 65001&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 0&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 0&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 0&nbsp;&nbsp;&nbsp; 0&nbsp;&nbsp;&nbsp; 0&nbsp;&nbsp;&nbsp; never&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Active 0 http://m.getsatisfaction.com/topics/7737117/replies/19534339 http://m.getsatisfaction.com/topics/7737117 19534339 Jason Guy responded to "eBGP MultiHop Problem" 2018-05-21T02:04:21Z 2018-05-21T02:04:21Z Jason Guy http://m.getsatisfaction.com/people/7610836 https://d2r1vs3d9006ap.cloudfront.net/public/uploaded_images/10572443/photo_medium.jpg jason_guy I noticed the static route is a default. I vaguely recall some caveat that BGP must have a route to the bgp speaker. Try configuring a more specific static route on each BGP speaker for the remote update source IP. 0 http://m.getsatisfaction.com/topics/7737117/replies/19534856 http://m.getsatisfaction.com/topics/7737117/replies/19534339 19534856 scott pledger responded to "eBGP MultiHop Problem" 2018-05-21T11:49:16Z 2018-05-21T11:49:16Z scott pledger http://m.getsatisfaction.com/people/9666775 https://www.gravatar.com/avatar/80de74a0b10cab884c2600e5e7c2e831?d=identicon&s=55&r=PG scott_pledger Jason, that did it !is that a Cumulus specific thing ? I don't recall having to do that with Cisco anyways. <br />Also , on a side note i didnt see that mentioned in the Cumulus eBGP Multihop config guide. <br /><br />Thank You Very Much !!!!-Scott 0 http://m.getsatisfaction.com/topics/7737117/replies/19535105 http://m.getsatisfaction.com/topics/7737117 19535105 Jason Guy responded to "eBGP MultiHop Problem" 2018-05-21T14:11:45Z 2018-05-21T14:11:45Z Jason Guy http://m.getsatisfaction.com/people/7610836 https://d2r1vs3d9006ap.cloudfront.net/public/uploaded_images/10572443/photo_medium.jpg jason_guy Hi Scott,<br />No, this was true for IOS back when I studied for my CCIE. Doing a quick google search, I found this interesting <a href="http://switchpacket.blogspot.com/2013/08/bgp-peering-over-default-routes.html" rel="nofollow" target="_blank">article</a>. Apparently this rule is implied in RFC 4271. The FRR developers confirmed that we certainly enforce this, but it can be turned off. If you think about it in a "real world" topology, would you really want to peer BGP using a default (the least specific route)? Glad it is working! 0 http://m.getsatisfaction.com/topics/7737117/replies/19535111 http://m.getsatisfaction.com/topics/7737117 19535111 scott pledger responded to "eBGP MultiHop Problem" 2018-05-21T14:14:15Z 2018-05-21T14:14:15Z scott pledger http://m.getsatisfaction.com/people/9666775 https://www.gravatar.com/avatar/80de74a0b10cab884c2600e5e7c2e831?d=identicon&s=55&r=PG scott_pledger Thanks Jason. Now that you mention it, I do remember having a specific route, vaguely. Been several years. Makes sense. Thank you so much. 0