Re: IEWB Dynamips, v4.1, Lab 17, Task 4.3

From: Bogdan Sass (bogdan.sass@catc.ro)
Date: Mon Sep 15 2008 - 15:47:34 ART

Igor M. wrote:
> your bridge is misconfigured on SW2:
>
> interface Vlan23
> ip address 173.1.23.8 255.255.255.0
> ip ospf mtu-ignore
> bridge-group 1
>
>
> Your bvi interface is supposed to have that ip address, not vlan 23...
>
    Thank you for the quick reply. This is how the IE SG configures the
VLAN bridge:

SW2:
interface Vlan8
bridge-group 1
!
interface Vlan23
bridge-group 1
!
bridge 1 protocol vlan-bridge

    I'm not sure I can configure it the way you suggested, because the
two VLAN interfaces on SW2 (VLAN 23 and VLAN 8) have different IP
subnets (173.1.23.8/24 for vl23, 173.1.8.8/24 for vl8). I guess I could
do a secondary on interface bvi1, but that wouldn't violate the "do not
change/add IP addresses" requirement?

    [ Side note: I am not familiar with the "vlan-bridge" protocol -
this is the first time I encountered it. My understanding is that this
is used only for protocols that the switch/router does not route, and
thus it will not create a bvi interface. Please correct me if I am wrong. ]

>
> take off the ip from that vlan int, and do:
>
> bridg irb
> bridge 1 protocol ieee
> bridge 1 route ip
>
> int bvi 1
> ip add 173.1.23.8 255.255.255.0
> ip ospf mtu-ignore
>
> ----------------------
> I.M., M.Eng. P.Eng.
> Network Architect
> CI Investments
> ----------------------
>
> --- On *Mon, 9/15/08, Bogdan Sass /<bogdan.sass@catc.ro>/* wrote:
>
> From: Bogdan Sass <bogdan.sass@catc.ro>
> Subject: Re: IEWB Dynamips, v4.1, Lab 17, Task 4.3
> To: "Cisco certification" <ccielab@groupstudy.com>
> Received: Monday, September 15, 2008, 2:18 PM
>
> Igor M. wrote:
> > can you please post the pertinent config between at least two
> > faulty-neighbor nodes?
> >
> Here they are (the network on VLAN 23 is 173.1.23.0/24):
>
> ! =============R3=============
> Rack1R3#sh run | sec ospf
>
> router ospf 1
> router-id 150.1.3.3
> log-adjacency-changes
> network 150.1.3.3 0.0.0.0 area 0
> network 173.1.13.3 0.0.0.0 area 0
> network 173.1.23.3 0.0.0.0 area 23
> network 173.1.32.3 0.0.0.0 area 0
> network 173.1.137.3 0.0.0.0 area
> 137
>
> Rack1R3#sh run int e0/1
> Building configuration...
>
> Current configuration : 99 bytes
> !
> interface Ethernet0/1
> ip address 173.1.23.3 255.255.255.0
> ip ospf mtu-ignore
> full-duplex
> end
>
> ! =============SW2=============
> Rack1SW2#sh run | sec ospf
>
> router ospf 1
> router-id 150.1.8.8
> log-adjacency-changes
> redistribute connected subnets route-map CONN2OSPF
> network 173.1.8.8 0.0.0.0 area 23
> network 173.1.23.8 0.0.0.0 area 23
>
> Rack1SW2#sh run int vlan23
> Building configuration...
> Current configuration : 97 bytes
> !
> interface Vlan23
> ip address 173.1.23.8 255.255.255.0
> ip ospf mtu-ignore
> bridge-group 1
> end
> ! =============R2=============
> Rack1R2#sh run | sec ospf
> router ospf 1
> router-id 150.1.2.2
> log-adjacency-changes
> network 150.1.2.2 0.0.0.0 area 0
> network 173.1.23.2 0.0.0.0 area 23
> network 173.1.32.2 0.0.0.0 area 0
> network
> 173.1.125.2 0.0.0.0 area 0
>
> Rack1R2#sh run int f0/0
> Building configuration...
>
> Current configuration : 115 bytes
> !
> interface FastEthernet0/0
> ip address 173.1.23.2 255.255.255.0
> ip ospf mtu-ignore
> duplex auto
> speed auto
> end
>
> Rack1R2#sh ip ospf nei
>
> Neighbor ID Pri State Dead Time Address Interface
> 150.1.5.5 100 FULL/DR 00:01:56 173.1.125.5 Serial1/0
> 150.1.3.3 0 FULL/ - 00:00:38 173.1.32.3 Serial1/1
> 150.1.3.3 1 FULL/DROTHER 00:00:32 173.1.23.3
> FastEthernet0/0
> 150.1.8.8 1 EXCHANGE/DR 00:00:38 173.1.23.8
> FastEthernet0/0
>
> [ Notice that R2 and R3 establish an adjacency - the problem is
> between either of them and SW2 ]
>
> > ----------------------
> > I.M., M.Eng. P.Eng.
> > Network Architect
> > CI Investments
> >
> ----------------------
> >
> > --- On *Mon, 9/15/08, Bogdan Sass /<bogdan.sass@catc.ro>/* wrote:
> >
> > From: Bogdan Sass <bogdan.sass@catc.ro>
> > Subject: IEWB Dynamips, v4.1, Lab 17, Task 4.3
> > To: "Cisco certification" <ccielab@groupstudy.com>
> > Received: Monday, September 15, 2008, 2:06 PM
> >
> > I'm trying to configure a "very simple :P " OSPF
> area, between
> > R2,
> > R3, and SW2 (all connected to the same ethernet segment: R2 via f0/0,
>
> > R3 via e0/1, and SW2 via VLAN23).
> >
> > However, the adjacency with the switch gets stuck in the
> > EXCHANGE/EXSTART stage. I know it looks like an MTU mismatch, but...
> all
> > interfaces show an MTU of 1500 bytes, and the command "ip ospf
> > mtu-ignore" does not solve the problem.
> >
> > [ Later edit: the switch interface is
> configured as part of a
> > vlan-bridge group, as
> > per another task. If I remove the bridge-group
> > command from the interface, the neighbors immediately go to FULL. As
> > soon as I put the command back, they get stuck in EXSTART...
> > The problem is already on the IE forum (
> >
> http://forum.internetworkexpert.com/ubbthreads.php/ubb/showflat/Number/23481/page/1#Post23481
> >
> > ) , but there is no clear answer (seems to work for some people, not
> > work for others).
> > ]
> >
> > *Mar 1 00:29:40.807: OSPF: Send DBD to 150.1.2.2 on Vlan23 seq 0x10E2
>
> > opt 0x52 flag 0x7 len 32
> > *Mar 1 00:29:40.811: OSPF: Retransmitting DBD to 150.1.2.2 on Vlan23
> [1]
> > Rack1SW2#
> > *Mar 1 00:29:43.083: OSPF: Send DBD to 150.1.3.3 on Vlan23 seq 0x243D
>
> > opt 0x52 flag 0x7 len 32
> > *Mar 1
> 00:29:43.087: OSPF: Retransmitting DBD to 150.1.3.3 on Vlan23
> [1]
> > Rack1SW2#
> > *Mar 1 00:29:45.811: OSPF: Send DBD to 150.1.2.2 on Vlan23 seq 0x10E2
>
> > opt 0x52 flag 0x7 len 32
> > *Mar 1 00:29:45.815: OSPF:
> > Retransmitting DBD to 150.1.2.2 on Vlan23 [2]
> > Rack1SW2#
> > *Mar 1 00:29:48.087: OSPF: Send DBD to 150.1.3.3 on Vlan23 seq 0x243D
>
> > opt 0x52 flag 0x7 len 32
> > *Mar 1 00:29:48.091: OSPF: Retransmitting DBD to 150.1.3.3 on Vlan23
> [2]
> > Rack1SW2#
> > *Mar 1 00:29:50.815: OSPF: Send DBD to 150.1.2.2 on Vlan23 seq 0x10E2
>
> > opt 0x52 flag 0x7 len 32
> > *Mar 1 00:29:50.819: OSPF: Retransmitting DBD to 150.1.2.2 on Vlan23
> [3]
> > Rack1SW2#
> > *Mar 1 00:29:53.091: OSPF: Send DBD to 150.1.3.3 on Vlan23 seq 0x243D
>
> > opt 0x52 flag 0x7 len 32
> > *Mar 1 00:29:53.095:
> OSPF: Retransmitting DBD to 150.1.3.3 on Vlan23
> [3]
> > Rack1SW2#
> > *Mar 1 00:29:55.819: OSPF: Send DBD to 150.1.2.2 on Vlan23 seq 0x10E2
>
> > opt 0x52 flag 0x7 len 32
> > *Mar 1 00:29:55.823: OSPF: Retransmitting DBD to 150.1.2.2 on Vlan23
> [4]
> >
> > Rack1SW2#sh ip ospf nei
> >
> > Neighbor ID Pri State Dead Time Address
> Interface
> > 150.1.2.2 1
> > EXSTART/DROTHER 00:00:38 173.1.23.2 Vlan23
> > 150.1.3.3 1 EXSTART/BDR 00:00:30 173.1.23.3
> Vlan23
> >
> > Does anybody know what I should do to make both tasks work?
> >
> > Thank you,
> >
> > --
> > Bogdan Sass
> > CCAI,CCNP,CCSP,JNCIA-ER
> > Information Systems Security Professional
> > "Curiosity was framed - ignorance killed the cat"
> >
> >
> >
> Blogs and organic groups at http://www.ccie.net
> >
> >
> _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
> >
> >
> >
> >
> >
> >
> >
> >
> >
>
>
> --
> Bogdan Sass
> CCAI,CCNP,CCSP,JNCIA-ER
> Information Systems Security Professional
> "Curiosity was framed - ignorance killed the cat"
>
> --
> Bogdan Sass
> CCAI,CCNP,CCSP,JNCIA-ER
> Information Systems Security Professional
> "Curiosity was framed - ignorance killed the cat"
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
> 

-- 
Bogdan Sass
CCAI,CCNP,CCSP,JNCIA-ER
Information Systems Security Professional
"Curiosity was framed - ignorance killed the cat"

Blogs and organic groups at http://www.ccie.net

This archive was generated by hypermail 2.1.4 : Sat Oct 04 2008 - 09:26:18 ART