RE: VRF - Problem

I am not en expert but can you explain your design ?
 
Is this MPLS network ?

What IGP you run between P and PE routers?

Why do you run VPNv4 on R3 (P router)? I think that normally you run vpnv4
only between edge routers (PEs) and leave the core unaware of client
networks.

Configuration:

Under R1 there is "neighbor internal remote-as 3" while R3 and R4 are
configured with "remote-as 1" command.

On R2 there is no neighbor under vpnv4 family.

-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of
CCIE-Newbie
Sent: 17-Jan-10 01:57
To: Cisco certification
Subject: VRF - Problem

Hi experts,

I'm having a strange problem with a vrf configuration.
Maybe this seems to very simple but it doesn't work.
First of all here is the topology:

R1 (CE) --- R2 (PE) ----R3 (P-Router) Router ----R4 (PE)-----R5 (CE)

Between R1 an R2 are running ospf. On R2 there is a vrf:
ip vrf TEST
 rd 10:10
 route-target export 10:10
 route-target import 10:10

The Interface which point to R1 have
ip vrf forwarding TEST

Also I saw the routes from R1 on R2 with "show ip route vrf TEST !!
Then I have also a M-BGP Session between R2-R3-R4 with R3 as
route-reflector and R2/R4:

R2
router bgp 1
 no synchronization
 bgp router-id 2.2.2.2
 bgp log-neighbor-changes
 network 2.2.2.2 mask 255.255.255.255
 neighbor internal peer-group
 neighbor internal remote-as 3
 neighbor internal update-source Loopback0
 neighbor 3.3.3.3 peer-group internal
 network 2.2.2.2 mask 255.255.255.255
 no auto-summary
 !
 address-family vpnv4
  neighbor internal send-community extended
 exit-address-family
 !
 address-family ipv4 vrf TEST
  redistribute ospf 101 vrf TEST match internal external 1 external 2
  no synchronization
 exit-address-family

R3 (P Router)
router bgp 1
 no synchronization
 bgp router-id 3.3.3.3
 bgp log-neighbor-changes
 neighbor internal peer-group
 neighbor internal remote-as 1
 neighbor internal update-source Loopback0
 neighbor internal route-reflector-client
 neighbor internal next-hop-self
 neighbor 2.2.2.2 peer-group internal
 neighbor 4.4.4.4 peer-group internal
 no auto-summary
 !
 address-family vpnv4
  neighbor internal send-community extended
  neighbor internal route-reflector-client
  neighbor internal next-hop-self
  neighbor 2.2.2.2 activate
  neighbor 4.4.4.4 activate
 exit-address-family

R4 (PE- Router)
router bgp 1
 no synchronization
 bgp router-id 4.4.4.4
 bgp log-neighbor-changes
 neighbor internal peer-group
 neighbor internal remote-as 1
 neighbor internal update-source Loopback0
 neighbor 3.3.3.3 peer-group internal
 no auto-summary
 !
 address-family vpnv4
  neighbor internal send-community extended
  neighbor 3.3.3.3 activate
 exit-address-family
 !
 address-family ipv4 vrf TEST
  redistribute ospf 101 vrf TEST match internal external 1 external 2
  no synchronization
 exit-address-family

The bgp sessions are working...because I can see the network from R2 on
R4 !
Maybe there is a misconfiguration in the P-Router with the VPNv4 address
family.
When I configure peering between both PE-Routers all works fine...and I
can see als the vrf TEST routes on both sides ...

Please can anyone help me ?

Thanks

Dennis

Blogs and organic groups at http://www.ccie.net
Received on Sun Jan 17 2010 - 09:09:13 ART