Re: Damn Sham! ***P1*** Help Please from Paul Negron on 2011-08-08 (Ccielab archives 08/2011)

From: Paul Negron <negron.paul_at_gmail.com>
Date: Sun, 07 Aug 2011 21:34:12 -0600
I don't know. Maybe I am missing something here. If I remember SHAM links
correctly, you should be referencing the actual ip address of that
FastEthernet that is in the VRF as the source. I never used the actual
physical interface....interesting. I always used a loopback. I assumed it
had to be a /32. Looks like I have something to lab up to brush up my memory
memory.:-)
Thanks!!!
Paul
-- 
Paul Negron
CCIE# 14856 CCSI# 22752
Senior Technical Instructor
> From: marc edwards <renorider_at_gmail.com>
> Reply-To: marc edwards <renorider_at_gmail.com>
> Date: Sun, 7 Aug 2011 20:16:47 -0700
> To: Cisco certification <ccielab_at_groupstudy.com>
> Subject: Damn Sham! ***P1*** Help Please
> 
> Hello experts! I hope you are having (had) a great weekend.
> 
> I am getting down to the final hour so working on the MPLS stuff. Glad to
> see that my MPLS L3 VPN is working and I understand the concepts well
> (Thanks Keith Barker & Scott Morris Cisco Live! Presentation). I can enable
> this and feeling very comfortable with all the components. I am onto
> figuring out this sham link thing. I understand the theory ( I think). So
> after getting my L3 VPN up and running through my PE's to CE's R1 and R6, I
> introduced the back door on the Fa 0/0 interface. Unfortunately something is
> wrong with my config because I can't seem to get the CE's to prefer the MPLS
> cloud any more. See my topo and I will initially provide sh run of my PE's.
> Any thoughts? This is my last session before test day Tuesday. I am kicked
> off the rack at 3AM PST UTC -8. No rush or anything but I need help fast
> Please!
> 
> R1 (fa0/0)--->R2 (PE)--> {MPLS CLOUD} <-- R5<-- (fa 0/0) R6
> (fa0/1)
>      (fa0/1)
>  |
>            |
>  
> |-------------------------------------------VLAN3-----------------------------
> ----|
> 
> 
> R2
> 
> !
> hostname R2
> !
> boot-start-marker
> boot-end-marker
> !
> no logging console
> !
> no aaa new-model
> dot11 syslog
> ip cef
> !
> !
> !
> !
> ip vrf acme
>  rd 100:100
>  route-target export 10.2.2.2:20
>  route-target import 10.5.5.5:20
> !
> no ip domain lookup
> !
> multilink bundle-name authenticated
> !
> !
> !
> !
> archive
>  log config
>   hidekeys
> !
> !
> !
> !
> !
> !
> !
> interface Loopback0
>  ip address 10.2.2.2 255.255.255.0
>  ip ospf network point-to-point
> !
> interface Loopback1
>  ip address 10.22.2.2 255.255.255.0
> !
> interface FastEthernet0/0
>  ip vrf forwarding acme
>  ip address 1.1.2.2 255.255.255.0
>  duplex auto
>  speed auto
> !
> interface FastEthernet0/1
>  no ip address
>  shutdown
>  duplex auto
>  speed auto
> !
> interface Serial0/0/0
>  no ip address
>  encapsulation frame-relay
>  no frame-relay inverse-arp
> !
> interface Serial0/0/0.203 point-to-point
>  ip address 10.0.203.2 255.255.255.254
>  snmp trap link-status
>  mpls ip
>  frame-relay interface-dlci 203
> !
> interface Serial0/0/0.204 point-to-point
>  ip address 10.0.204.2 255.255.255.254
>  snmp trap link-status
>  mpls ip
>  frame-relay interface-dlci 204
> !
> interface Serial0/0/1
>  no ip address
>  shutdown
> !
> router eigrp 1
>  auto-summary
>  !
>  address-family ipv4 vrf acme
>   redistribute bgp 25 metric 10000 10 255 1 1500
>   network 0.0.0.0
>   no auto-summary
>   autonomous-system 8
>  exit-address-family
> !
> router ospf 2 vrf acme
>  router-id 10.22.2.2
>  domain-id 0.0.0.0
>  domain-tag 2222
>  log-adjacency-changes
>  area 0 sham-link 1.1.2.1 6.6.5.5
>  redistribute bgp 25 subnets
>  network 0.0.0.0 255.255.255.255 area 0
> !
> router ospf 1
>  router-id 10.2.2.2
>  log-adjacency-changes
>  network 10.0.0.0 0.255.255.255 area 0
> !
> router bgp 25
>  bgp log-neighbor-changes
>  neighbor 10.5.5.5 remote-as 25
>  neighbor 10.5.5.5 update-source Loopback0
>  !
>  address-family ipv4
>   no neighbor 10.5.5.5 activate
>   no auto-summary
>   no synchronization
>  exit-address-family
>  !
>  address-family vpnv4
>   neighbor 10.5.5.5 activate
>   neighbor 10.5.5.5 send-community extended
>  exit-address-family
>  !
>  address-family ipv4 vrf acme
>   redistribute ospf 2 vrf acme match internal external 1 external 2
>   no synchronization
>  exit-address-family
> !
> ip forward-protocol nd
> !
> !
> no ip http server
> no ip http secure-server
> !
> !
> !
> !
> !
> !
> !
> control-plane
> !
> !
> !
> line con 0
>  exec-timeout 0 0
>  privilege level 15
>  logging synchronous
> line aux 0
> line vty 0 4
>  login
> !
> scheduler allocate 20000 1000
> end
> 
> R5
> 
> !
> hostname R5
> !
> boot-start-marker
> boot-end-marker
> !
> no logging console
> !
> no aaa new-model
> memory-size iomem 20
> !
> !
> ip cef
> !
> !
> ip vrf acme
>  rd 100:100
>  route-target export 10.5.5.5:20
>  route-target import 10.2.2.2:20
> !
> no ip domain lookup
> !
> multilink bundle-name authenticated
> !
> !
> voice-card 0
>  no dspfarm
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> archive
>  log config
>   hidekeys
> !
> !
> !
> !
> !
> !
> interface Loopback0
>  ip address 10.5.5.5 255.255.255.0
>  ip ospf network point-to-point
> !
> interface Loopback1
>  ip address 10.55.5.5 255.255.255.0
> !
> interface FastEthernet0/0
>  ip vrf forwarding acme
>  ip address 6.6.5.5 255.255.255.0
>  duplex auto
>  speed auto
> !
> interface FastEthernet0/1
>  no ip address
>  shutdown
>  duplex auto
>  speed auto
> !
> interface Serial0/0/0
>  no ip address
>  encapsulation frame-relay
>  no frame-relay inverse-arp
> !
> interface Serial0/0/0.503 point-to-point
>  ip address 10.0.35.2 255.255.255.254
>  mpls ip
>  frame-relay interface-dlci 503
> !
> interface Serial0/0/0.504 point-to-point
>  ip address 10.0.45.5 255.255.255.254
>  mpls ip
>  frame-relay interface-dlci 504
> !
> interface Serial0/0/1
>  no ip address
>  shutdown
> !
> interface Serial0/1/0
>  no ip address
>  shutdown
>  clock rate 2000000
> !
> router eigrp 1
>  auto-summary
>  !
>  address-family ipv4 vrf acme
>   redistribute bgp 25 metric 10000 10 255 1 1500
>   network 0.0.0.0
>   no auto-summary
>   autonomous-system 8
>  exit-address-family
> !
> router ospf 2 vrf acme
>  router-id 10.55.5.5
>  domain-id 0.0.0.0
>  domain-tag 2222
>  log-adjacency-changes
>  area 0 sham-link 6.6.5.6 1.1.2.2
>  redistribute bgp 25 subnets
>  network 0.0.0.0 255.255.255.255 area 0
> !
> router ospf 1
>  router-id 10.5.5.5
>  log-adjacency-changes
>  network 10.0.0.0 0.255.255.255 area 0
> !
> router bgp 25
>  no synchronization
>  bgp log-neighbor-changes
>  neighbor 10.2.2.2 remote-as 25
>  neighbor 10.2.2.2 update-source Loopback0
>  no auto-summary
>  !
>  address-family vpnv4
>   neighbor 10.2.2.2 activate
>   neighbor 10.2.2.2 send-community both
>  exit-address-family
>  !
>  address-family ipv4 vrf acme
>   redistribute ospf 2 vrf acme match internal external 1 external 2
>   no synchronization
>  exit-address-family
> !
> !
> !
> no ip http server
> no ip http secure-server
> !
> !
> !
> !
> !
> !
> !
> control-plane
> !
> !
> !
> !
> !
> !
> !
> !
> !
> !
> line con 0
>  exec-timeout 0 0
>  privilege level 15
>  logging synchronous
> line aux 0
> line vty 0 4
>  login
> !
> scheduler allocate 20000 1000
> 
> !
> webvpn cef
> !
> end
> 
> 
> Blogs and organic groups at http://www.ccie.net
> 
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Sun Aug 07 2011 - 21:34:12 ART
This archive was generated by hypermail 2.2.0 : Thu Sep 01 2011 - 06:05:56 ART