From: alee@cccis.com
Date: Fri Sep 13 2002 - 14:17:16 GMT-3
Got a question about OSPF NSSA routes. I got a test lab topology like
below:
TEST------------------------------MAYS7513---------------------------------------MAYS7507-----------------------MART7204
|----------area 10.10.10.10-------| |--------------area
1.1.1.1-----------------------| |---------area 0.0.0.0---------------|
Actually, between MAYS7513 and MAYS7507 routers, I put a "dumb" router to
simulate a firewall. There's no routing protocol running on the "dumb"
router so we can take it out of the picture. BTW, I am running a tunnel
between MAYS7513 and MAYS7507 in order to pass OSPF through the simulated
firewall. In area 10.10.10.10, I make it as NSSA. On TEST router, I
implemented a route-map to pass a couple of loopback IP addresses out. On
MAYS 7513 router, I saw those NSSA route as following: Theoretically,
MAYS7507 router should see those two routes in its route table as External
Type 5, am I correct? But I didn't see any. Where could be the problem?
What should I check? Can someone help me with it? I appreciate it.
MAYS7513#sh ip ospf nei
Neighbor ID Pri State Dead Time Address Interface
172.20.254.254 1 FULL/ - 00:00:31 172.20.20.2 Tunnel0
(To MAYS7507)
192.168.155.5 1 FULL/ - 00:00:35 172.20.255.49 Serial3/0
(To TEST)
MAYS7513#sh ip route
................
O N1 192.168.55.0/24 [110/69] via 172.20.255.49, 00:08:22, Serial3/0
O N1 192.168.5.0/24 [110/69] via 172.20.255.49, 00:08:22, Serial3/0
MAYS7513#sh ip ospf virtual
Virtual Link OSPF_VL0 to router 172.20.254.254 is up
Run as demand circuit
DoNotAge LSA allowed.
Transit area 1.1.1.1, via interface Tunnel0, Cost of using 11111
Transmit Delay is 1 sec, State POINT_TO_POINT,
Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5
Hello due in 00:00:05
Adjacency State FULL (Hello suppressed)
........................................
MAYS7507#sh ip ospf nei
Neighbor ID Pri State Dead Time Address Interface
172.20.254.1 1 FULL/ - 00:00:32 172.20.255.10 Serial0/0
(To MART7204)
172.20.254.2 1 FULL/ - 00:00:37 172.20.20.1 Tunnel0
(To MAYS7513)
MAYS7507#sh ip route
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - candidate
default
U - per-user static route, o - ODR
Gateway of last resort is not set
O 198.204.8.0/24 [110/74] via 172.20.255.10, 00:41:46, Serial0/0
198.204.15.0/27 is subnetted, 1 subnets
O 198.204.15.160 [110/11121] via 172.20.20.1, 00:42:06, Tunnel0
172.20.0.0/16 is variably subnetted, 11 subnets, 4 masks
S 172.20.254.2/32 [1/0] via 172.20.1.30
O 172.20.254.1/32 [110/65] via 172.20.255.10, 00:41:46, Serial0/0
S 172.20.254.9/32 [1/0] via 172.20.1.30
C 172.20.255.8/30 is directly connected, Serial0/0
S 172.20.255.48/30 [1/0] via 172.20.1.30
C 172.20.20.0/24 is directly connected, Tunnel0
C 172.20.254.254/32 is directly connected, Loopback0
C 172.20.1.0/24 is directly connected, Ethernet0/0
O 172.20.4.0/22 [110/74] via 172.20.255.10, 00:41:47, Serial0/0
O IA 172.20.80.0/24 [110/11169] via 172.20.20.1, 00:32:04, Tunnel0
(TEST router Ethernet IP)
O IA 172.20.70.0/24 [110/11169] via 172.20.20.1, 00:32:05, Tunnel0
(TEST router secondary Ethernet IP)
PS: On every router, I saw OSPF neighbor(s). Virtual link is up up.
Arthur Lee
This archive was generated by hypermail 2.1.4 : Mon Oct 07 2002 - 07:43:51 GMT-3