Tag: Networking

To configure dual internet connections using BGP on a Cisco router for redundancy and failover, follow these key steps and considerations:

Basic BGP Configuration

Establish BGP Sessions with Both ISPs
Configure BGP neighbors using the ISPs’ AS numbers and your assigned ASN. For example:
router bgp 65001
neighbor 203.0.113.1 remote-as ISP1_ASN
neighbor 198.51.100.1 remote-as ISP2_ASN
address-family ipv4
network 192.0.2.0 mask 255.255.255.0 # Advertise your public subnet
exit-address-family

Replace ISP1_ASN and ISP2_ASN with the respective ISP AS numbers

Advertise Networks
Use the network command to announce your public IP ranges to both ISPs. Ensure both ISPs accept the advertised prefixes

Traffic Control and Path Selection

Outbound Traffic

Local Preference: Prioritize one ISP for outbound traffic by setting a higher local preference (default is 100):

route-map PREFER_ISP1 permit 10

set local-preference 200

!

router bgp 65001

neighbor 203.0.113.1 route-map PREFER_ISP1 in

This makes ISP1 the preferred path

Inbound Traffic

AS Path Prepending: Lengthen the AS path for the backup ISP to make the primary ISP more attractive:

route-map PREPEND_ISP2 out

set as-path prepend 65001 65001 65001

!

router bgp 65001

neighbor 198.51.100.1 route-map PREPEND_ISP2 out

This reduces the likelihood of inbound traffic using ISP2 unless ISP1 fails

Failover Mechanisms

BGP Conditional Advertisement
Advertise routes to the backup ISP only if the primary ISP’s BGP session fails:

router bgp 65001

neighbor 198.51.100.1 advertise-map ADVERTISE_ONLY_IF_ISP1_DOWN non-exist-map CHECK_ISP1

!

ip prefix-list ISP1_ROUTES seq 5 permit 203.0.113.0/24

!

route-map CHECK_ISP1 permit 10

match ip address prefix-list ISP1_ROUTES

!

route-map ADVERTISE_ONLY_IF_ISP1_DOWN permit 10

set ip address prefix-list YOUR_PUBLIC_SUBNET

This ensures ISP2 receives your prefix only when ISP1 is unavailable

Fast External Fall over
Enable rapid detection of link failures:

router bgp 65001

bgp fast-external-fallover

This terminates BGP sessions immediately if the physical interface goes down3.

Additional Considerations

• NAT Configuration: If using NAT, ensure the firewall or router translates internal addresses to the public IPs provided by the primary ISP. Verify the secondary ISP allows routing the primary’s IP range35.
• Default Routes: Receive default routes from both ISPs using neighbor <IP> default-originate or configure static defaults with floating AD values for backup25.
• Route Filtering: Use prefix-lists or route-maps to filter unwanted routes from ISPs to prevent becoming a transit AS5.

Verification Commands

• Check BGP neighbor status:
  show ip bgp summary
• Verify advertised/received routes:
  show ip bgp neighbors <IP> advertised-routes
show ip bgp neighbors <IP> routes
• Monitor path selection:
  show ip bgp

By combining these techniques, you achieve redundancy, control traffic flow, and automate failover. Always coordinate with ISPs to ensure they accept your BGP policies

OSPF prefers the lowest cost path to determine the best route. While OSPF doesn’t use administrative distance directly for path control like other protocols (e.g., EIGRP or BGP), there are several effective methods to manipulate OSPF routes.

---

1. OSPF Cost Manipulation (Recommended Method)

The most common method to influence OSPF path selection is by adjusting the interface cost.

🔹 Cost Calculation Formula

Cost=Reference BandwidthInterface Bandwidth\text{Cost} = \frac{\text{Reference Bandwidth}}{\text{Interface Bandwidth}}Cost=Interface BandwidthReference Bandwidth​

• Default Reference Bandwidth = 100 Mbps (can be adjusted for higher-speed links).
• To modify reference bandwidth:

Router(config-router)# auto-cost reference-bandwidth 10000

(Recommended for networks with gigabit or higher-speed links)

🔹 Cost Adjustment Command

To modify the OSPF cost directly on an interface:

Router(config-if)# ip ospf cost <value>

✅ Higher Cost = Less Preferred Path
✅ Lower Cost = More Preferred Path

Example Topology

R1 ----- 100 Mbps ----- R2
R1 ----- 10 Mbps ------ R3 ----- 1 Gbps ------ R2

• Default Cost via R2 (direct): 1
• Default Cost via R3: 10 (10 Mbps) + 1 (1 Gbps) = 11
  👉 To prefer the R3 path, configure ip ospf cost to 12 on the R1-R2 link.

---

2. OSPF Metric Manipulation Using Bandwidth

Since OSPF calculates cost based on bandwidth by default, modifying the bandwidth also manipulates the path.

🔹 Bandwidth Command

Router(config-if)# bandwidth <value in kbps>

❗ Note: The bandwidth command only influences OSPF cost calculations — it does not change the actual interface speed.

---

3. Route Summarization (On ABRs/ASBRs)

Summarization helps reduce the LSDB size and can influence path selection by controlling route advertisements.

🔹 ABR Summarization (Inter-Area)

Router(config-router)# area <area-id> range <network> <mask>

🔹 ASBR Summarization (External Routes)

Router(config-router)# summary-address <network> <mask>

✅ Summarized routes are preferred over more specific routes with the same cost.
✅ Helps control the size of the routing table in large networks.

---

4. OSPF Route Filtering

OSPF supports filtering routes using:

🔹 distribute-list (Inbound Filtering)

• Filters routes before being installed in the routing table.

Router(config-router)# distribute-list <ACL> in <interface>

🔹 area <area-id> filter-list (Inter-Area Filtering)

• Filters Type 3 LSAs between areas (only on ABRs).

Router(config-router)# area 1 filter-list prefix <prefix-list> in

🔹 route-map with redistribute (Advanced Control)

• Used on ASBRs when redistributing external routes into OSPF.

Router(config-router)# route-map FILTER permit 10
Router(config-route-map)# match ip address 10
Router(config-router)# redistribute static subnets route-map FILTER

---

5. OSPF Priority (DR/BDR Election Control)

In multi-access networks (like Ethernet), OSPF priority determines which router becomes the DR/BDR.

🔹 Command to Modify OSPF Priority

Router(config-if)# ip ospf priority <value>

✅ Higher Priority = Preferred DR
✅ Priority 0 = Never a DR/BDR

---

6. OSPF Administrative Distance (Rarely Used)

The default OSPF administrative distance is:

• 110 for internal OSPF routes
• 120 for external OSPF routes

Though modifying the AD isn’t ideal for OSPF manipulation, it can be done:

🔹 Command to Change OSPF AD

Router(config-router)# distance <value> <source-ip> <wildcard-mask>

---

7. Floating Static Routes (Backup Path)

To create a backup route in case the OSPF path fails, use a floating static route with a higher AD:

Router(config)# ip route <destination> <mask> <next-hop> <higher AD>

---

8. Path Preference Example Scenario

Scenario

• Primary Link (R1 → R2) — 1 Gbps
• Backup Link (R1 → R3 → R2) — 100 Mbps

Objective: Prefer the backup link.

Solution

1. Use ip ospf cost to assign a higher cost to the primary link.

R1(config-if)# interface gig0/1
R1(config-if)# ip ospf cost 50

2. Alternatively, modify bandwidth:

R1(config-if)# interface gig0/1
R1(config-if)# bandwidth 10000

---

9. Best Practices for OSPF Path Manipulation

✅ Prefer ip ospf cost for precise control.
✅ Use bandwidth adjustments cautiously, as it may affect QoS and other protocols.
✅ Summarize routes to reduce LSDB size in large networks.
✅ Implement route filtering for fine-tuned path control.
✅ Maintain Area 0 as the backbone to ensure stable OSPF behavior.

Establishing OSPF neighbor relationships is a critical step before routers can exchange routing information. Understanding the process and troubleshooting steps ensures a stable OSPF network.

---

1. OSPF Neighborship Process

OSPF routers must go through specific steps to establish and maintain adjacency. The process involves 7 states:

OSPF Neighbor States

State	Description
Down	No Hello packets received. This is the starting state.
Init	Hello packet received, but the router’s own Router ID is NOT listed in the neighbor’s Hello.
2-Way	Router ID is seen in the received Hello, indicating bidirectional communication. DR/BDR election occurs here in broadcast/multi-access networks.
ExStart	Routers exchange DBD (Database Description) packets to negotiate the master/slave roles for database exchange.
Exchange	Routers exchange LSA headers to identify missing or outdated information.
Loading	Routers request and exchange missing LSAs using Link-State Request (LSR) and Link-State Update (LSU) packets.
Full	Full adjacency is achieved. The routers’ LSDBs are fully synchronized.

---

2. Key OSPF Packet Types

• Hello (Type 1): Establishes and maintains neighbor relationships.
• DBD (Type 2): Summarizes LSDB information during the Exchange state.
• LSR (Type 3): Requests missing LSAs.
• LSU (Type 4): Sends updated LSAs.
• LSAck (Type 5): Acknowledges receipt of LSAs.

---

3. OSPF Neighborship Requirements (Hello Packet Parameters)

To successfully form an OSPF neighbor relationship, these parameters must match:

✅ Area ID — Must be identical on both routers.
✅ Subnet Mask — Must match on the connecting interfaces.
✅ Hello and Dead Timers — Must match (default: 10 sec Hello, 40 sec Dead on broadcast networks).
✅ Authentication — Must match if configured.
✅ Stub Area Flag — Must match for routers within a stub area.
✅ MTU (Maximum Transmission Unit) — Should match to avoid DBD exchange issues.
✅ Router IDs — Each router must have a unique Router ID.

---

4. OSPF Troubleshooting Steps

If OSPF neighbors fail to establish, follow these steps:

🔎 Step 1: Check Interface Status

• Use show ip ospf interface to confirm the interface is up and participating in OSPF.

🔎 Step 2: Verify OSPF Configuration

• Use show running-config | section router ospf to review OSPF settings.
• Ensure correct:
  • Router ID
  • Network statements
  • Area assignments

🔎 Step 3: Check Hello and Dead Timers

• Use show ip ospf interface <interface> to confirm matching timers.

🔎 Step 4: Examine OSPF Neighbor State

• Use show ip ospf neighbor to identify the current state.
• Common issues based on state:
  • Stuck in INIT/2-WAY: Mismatched Hello parameters.
  • Stuck in EXSTART/EXCHANGE: MTU mismatch or corrupted DBD packets.
  • Stuck in LOADING: Missing or incomplete LSAs.

🔎 Step 5: Verify Area and Subnet Configuration

• Use show ip ospf database to check for mismatches in the Area ID or Subnet Mask.

🔎 Step 6: Inspect Authentication

• Use show ip ospf interface to confirm authentication settings if configured.

🔎 Step 7: Investigate Network Layer Issues

• Ensure IP connectivity using ping and traceroute.

---

5. Common OSPF Issues and Solutions

Issue	Solution
Stuck in DOWN state	Check IP connectivity and interface status.
Stuck in INIT state	Verify Hello timer, area ID, and network type.
Stuck in 2-WAY state	DR/BDR election issue; verify priority settings.
Stuck in EXSTART state	Check for MTU mismatch on both routers.
Stuck in LOADING state	Inspect LSDB using show ip ospf database.
Router ID Conflict	Ensure each router has a unique Router ID.

---

6. Useful OSPF Commands for Troubleshooting

✅ show ip ospf neighbor — Displays OSPF neighbor status.
✅ show ip ospf interface — Shows OSPF parameters like timers, priority, etc.
✅ show ip ospf database — Displays LSDB details.
✅ debug ip ospf hello — Useful for diagnosing Hello packet issues.
✅ debug ip ospf adj — Monitors the OSPF adjacency process.

---

7. Example Scenario (Common Issue – MTU Mismatch)

Symptom: OSPF stuck in EXSTART state.
Solution:

1. Use show ip ospf interface to check MTU values.
2. If there’s a mismatch, adjust the MTU value on one of the routers:

Router(config-if)# ip mtu 1500

In OSPF, areas are essential for scalability and efficient routing. The OSPF network is divided into logical segments called areas, with special rules for the Backbone Area (Area 0) and Multi-Area design.

---

1. OSPF Backbone Area (Area 0)

The Backbone Area (Area 0) is the central area in an OSPF network and is crucial for inter-area communication.

🔹 Key Characteristics of Area 0

• All other areas must connect to Area 0 for routing information exchange.
• Acts as the core through which all inter-area traffic flows.
• Ensures OSPF’s hierarchical design, improving stability and reducing SPF recalculations.
• Routers within Area 0 maintain a full LSDB with complete topology details for the area.

🔹 Backbone Router

• Any router with at least one interface in Area 0 is considered a Backbone Router.

---

2. OSPF Multi-Area Design

Dividing an OSPF network into multiple areas enhances scalability and improves performance.

🔹 Why Use Multiple Areas?

✅ Reduces LSDB size in each area.
✅ Limits SPF recalculation to within an area.
✅ Enhances network stability by isolating topology changes.
✅ Optimizes router memory and CPU usage.

🔹 Area Types in OSPF

1. Standard Area: A normal OSPF area that can exchange all LSA types.
2. Stub Area: Blocks external routes (Type 5 LSAs) to reduce overhead.
3. Totally Stubby Area: Blocks both external routes and inter-area routes (Type 3 and 5 LSAs).
4. NSSA (Not-So-Stubby Area): Allows limited external routes while remaining a stub area.
5. Totally NSSA: Combines NSSA and Totally Stubby rules.

---

3. OSPF Router Types in Multi-Area Design

Router Type	Description
Internal Router	All interfaces belong to the same area.
Backbone Router	Has at least one interface in Area 0.
Area Border Router (ABR)	Connects one or more non-backbone areas to Area 0. Maintains multiple LSDBs.
Autonomous System Boundary Router (ASBR)	Injects external routes (e.g., from BGP, EIGRP) into OSPF.

---

4. OSPF Inter-Area Routing

• ABRs summarize and propagate routing information between non-backbone areas and Area 0.
• Type 3 LSAs carry inter-area route information.
• ABRs can perform route summarization to reduce LSDB size and improve stability.

---

5. Example Network Topology

[Area 1] ---- [ABR] ---- [Area 0] ---- [ABR] ---- [Area 2]
    |                               |
[Router A]                   [Router B]

Key Points in the Example

✅ ABRs connect non-backbone areas to Area 0.
✅ Traffic between Area 1 and Area 2 must pass through Area 0.
✅ Router A (Area 1) cannot directly communicate with Router B (Area 2) without passing through Area 0.

---

6. Best Practices for OSPF Multi-Area Design

✅ Always ensure that all non-backbone areas connect to Area 0.
✅ Use route summarization on ABRs to reduce LSDB size.
✅ Designate stable and powerful routers as ABRs for efficient traffic handling.
✅ Implement stub or totally stubby areas for smaller branch networks to reduce routing overhead.

OSPF (Open Shortest Path First) calculates the best path to each destination using the Dijkstra’s Algorithm (also known as the Shortest Path First (SPF) algorithm). The process involves multiple steps to ensure accurate and loop-free routing.

---

Step 1: Establish Neighbor Relationships

• OSPF routers discover and establish adjacency with neighbors via Hello packets.
• Neighbor parameters (e.g., Hello/Dead timers, Area ID) must match for adjacency to form.
• Once neighbors are established, OSPF routers exchange LSAs (Link-State Advertisements).

---

Step 2: Build the Link-State Database (LSDB)

• Each router creates an LSDB, which contains detailed information about the network topology.
• LSAs are exchanged via flooding to ensure all routers in the area have identical LSDBs.
• The LSDB is essentially a map of the entire network area.

---

Step 3: Run the SPF Algorithm

• Using the LSDB, each router independently runs Dijkstra’s SPF algorithm to calculate the shortest path to each destination.
• The algorithm starts with itself as the root node and calculates the shortest path to all other nodes.

Dijkstra’s Algorithm Key Steps:

1. Mark the router itself as the starting point (Root).
2. Assign an initial cost of 0 to itself and infinity to all other nodes.
3. Examine all directly connected nodes, calculate the cost (using interface bandwidth), and record the lowest cost path.
4. Mark the node with the lowest cost as “visited” and add it to the Shortest Path Tree (SPT).
5. Repeat the process until all nodes are visited.

---

Step 4: Best Path Selection

• The best path is selected based on the lowest cumulative cost (metric).
• OSPF’s cost is calculated using this formula:

Cost=Reference BandwidthInterface Bandwidth\text{Cost} = \frac{\text{Reference Bandwidth}}{\text{Interface Bandwidth}}Cost=Interface BandwidthReference Bandwidth​

Default Reference Bandwidth: 100 Mbps (adjustable via auto-cost reference-bandwidth for higher-speed links).

Bandwidth	Cost
10 Mbps	10
100 Mbps	1
1 Gbps	1
10 Gbps	1 (unless reference bandwidth is adjusted)

---

Step 5: Install Routes in the Routing Table

• The calculated best path is installed in the RIB (Routing Information Base).
• If multiple paths have the same cost (ECMP – Equal-Cost Multi-Path), OSPF can load balance traffic across these paths.

---

Step 6: Ongoing Maintenance

• OSPF continuously monitors network changes.
• When a link or router fails, OSPF triggers an SPF recalculation to converge quickly.

---

Example Network Topology

[R1] ----- 10 Mbps ----- [R2]
 |                         |
 |----- 100 Mbps ----- [R3]

• If R1 needs to reach R2:
  • Path via R3 has a cost of 1 (100 Mbps).
  • Path directly to R2 has a cost of 10 (10 Mbps).
• OSPF will prefer the R1 → R3 → R2 path.

---

Key Notes

✅ OSPF is loop-free due to the SPF algorithm.
✅ LSDB synchronization ensures all routers have a consistent view of the network.
✅ OSPF recalculations can be minimized by effective area design and summarization.