在使用BGP路由和SoO时解决BGP-OMP路由环路
简介
本文档介绍在使用边界网关协议(BGP)路由和源站点(SoO)时,如何避免SD-WAN交换矩阵中出现路由环路。
先决条件
要求
Cisco 建议您了解以下主题:
- 基本了解重叠管理协议(OMP)
- 对BGP的基本了解
- SD-WAN组件以及这些组件之间的交互
使用的组件
本文档中的信息基于以下软件和硬件版本:
- 3台软件版本为17.2.1v的Cisco IOS® XE CSR1000v路由器,在控制器模式(SD-WAN)下运行
- 2台软件版本为16.7.3的Cisco IOS XE CSR1000v路由器
本文档中的信息都是基于特定实验室环境中的设备编写的。本文档中使用的所有设备最初均采用原始(默认)配置。如果您的网络处于活动状态,请确保您了解所有命令的潜在影响。
背景信息
在本文档中,使用以下拓扑:
拓扑
R1和R2是通用的Cisco IOS XE路由器(或能够运行BGPv4的任何其他路由器)。 cE1、cE2和cE3在控制器(SD-WAN)模式下运行思科IOS XE。您可以在此处找到为每个SD-WAN路由器分配的站点ID和system-ip参数的摘要:
| SD-WAN路由器 |
站点ID |
system-ip |
| cE1 | 214 | 192.168.30.214 |
| cE2 | 215 | 192.168.30.215 |
| cE3 | 216 | 192.168.30.216 |
下面是最初发生的一系列事件:
- R1和R2与cE1、cE2和cE3建立相应的eBGP对等。cE1和cE2建立iBGP对等。
- R2发出BGP路由10.1.1.0/24并通过eBGP将其通告给cE3。
- cE3在VRF 1地址系列中的服务端接收此BGP路由,然后将此路由重分配到OMP中。
- cE3将10.1.1.0/24 OMP路由通告到SD-WAN重叠(vSmart控制器负责通过OMP协议将路由信息传播到加入SD-WAN重叠的所有其他边缘路由器)。
- cE1和cE2接收OMP路由,并通过VRF 1中的eBGP将其重新分发到R1。
配置
以下是cE1的相关配置。请注意, send-comminity 未配置邻居192.168.160.215:
router bgp 65401
bgp log-neighbor-changes
distance bgp 20 200 20
!
address-family ipv4 vrf 1
redistribute omp
propagate-aspath
neighbor 192.168.140.10 remote-as 65300
neighbor 192.168.140.10 activate
neighbor 192.168.140.10 send-community both
neighbor 192.168.160.215 remote-as 65400
neighbor 192.168.160.215 activate
exit-address-family
!
sdwan
omp
no shutdown
send-path-limit 4
ecmp-limit 4
graceful-restart
no as-dot-notation
timers
holdtime 60
advertisement-interval 1
graceful-restart-timer 43200
eor-timer 300
exit
address-family ipv4 vrf 1
advertise bgp
!
address-family ipv4
advertise connected
advertise static
!
address-family ipv6
advertise connected
advertise static cE2:
router bgp 65401
bgp log-neighbor-changes
distance bgp 20 200 20
!
address-family ipv4 vrf 1
redistribute omp
propagate-aspath
neighbor 192.168.150.10 remote-as 65300
neighbor 192.168.150.10 activate
neighbor 192.168.150.10 send-community both
neighbor 192.168.160.214 remote-as 65401
neighbor 192.168.160.214 activate
neighbor 192.168.160.214 send-community both
exit-address-family
!
sdwan
omp
no shutdown
send-path-limit 4
ecmp-limit 4
graceful-restart
no as-dot-notation
timers
holdtime 60
advertisement-interval 1
graceful-restart-timer 43200
eor-timer 300
exit
address-family ipv4 vrf 1
advertise bgp
!
address-family ipv4
advertise connected
advertise static
!
address-family ipv6
advertise connected
advertise static cE3:
router bgp 65401
bgp log-neighbor-changes
timers bgp 5 15
!
address-family ipv4 vrf 1
redistribute omp
propagate-aspath
neighbor 192.168.60.11 remote-as 65500
neighbor 192.168.60.11 activate
exit-address-family
!
sdwan
omp
no shutdown
send-path-limit 4
ecmp-limit 4
graceful-restart
no as-dot-notation
timers
holdtime 60
advertisement-interval 1
graceful-restart-timer 43200
eor-timer 300
exit
address-family ipv4 vrf 1
advertise bgp
!
address-family ipv4
advertise connected
advertise static
!
address-family ipv6
advertise connected
advertise static
! 验证
1. 在初始状态下,从cE3通告路由并通过cE1和cE2通过OMP获知。将路由重新分发到BGP,并通告给彼此和R1:
cE1#
show bgp vpnv4 unicast vrf 1 10.1.1.1/24
BGP routing table entry for 1:1:10.1.1.1/24, version 342041
Paths: (2 available, best #2, table 1)
Advertised to update-groups:
4 5
Refresh Epoch 1
65500
192.168.160.215 (via vrf 1) from 192.168.160.215 (192.168.109.215)
Origin incomplete, metric 1000, localpref 50, valid, internal
Extended Community: SoO:0:215 RT:1:1
rx pathid: 0, tx pathid: 0
Updated on Aug 21 2020 11:23:32 GMT
Refresh Epoch 1
65500
192.168.30.216 (via default) from 0.0.0.0 (192.168.109.214)
Origin incomplete, metric 1000, localpref 50, valid, sourced, best
Extended Community: SoO:0:214 RT:1:1
rx pathid: 0, tx pathid: 0x0
Updated on Aug 21 2020 11:23:32 GMT
cE2#
show bgp vpnv4 unicast vrf 1 10.1.1.1/24
BGP routing table entry for 1:1:10.1.1.1/24, version 327810
Paths: (2 available, best #2, table 1)
Advertised to update-groups:
5 6
Refresh Epoch 1
65500
192.168.160.214 (via vrf 1) from 192.168.160.214 (192.168.109.214)
Origin incomplete, metric 1000, localpref 50, valid, internal
Extended Community: RT:1:1
rx pathid: 0, tx pathid: 0
Updated on Aug 21 2020 11:23:32 GMT
Refresh Epoch 1
65500
192.168.30.216 (via default) from 0.0.0.0 (192.168.109.215)
Origin incomplete, metric 1000, localpref 50, valid, sourced, best
Extended Community: SoO:0:215 RT:1:1
rx pathid: 0, tx pathid: 0x0
Updated on Aug 21 2020 11:23:32 GMT2. 在cE2上,WAN接口断开连接或与SD-WAN交换矩阵的连接丢失,因此OMP对等体(vSmart连接)关闭。只保留一个从iBGP获知的路由:
ce2(config)#
interface GigabitEthernet 2
ce2(config-if)#
shutdown
ce2(config-if)#
end
Uncommitted changes found, commit them? [yes/no/CANCEL] yes
Commit complete.ce2#
show bgp vpnv4 unicast vrf 1 10.1.1.1/24
BGP routing table entry for 1:1:10.1.1.1/24, version 345276
Paths: (1 available, best #1, table 1)
Advertised to update-groups:
6
Refresh Epoch 1
65500
192.168.160.214 (via vrf 1) from 192.168.160.214 (192.168.109.214)
Origin incomplete, metric 1000, localpref 50, valid, internal, best
Extended Community: RT:1:1
rx pathid: 0, tx pathid: 0x0
Updated on Aug 21 2020 11:23:32 GMT
cE1 still prefers the route via OMP (this is the only route that remains) originated by cE3:ce1#
show bgp vpnv4 unicast vrf 1 10.1.1.1/24
BGP routing table entry for 1:1:10.1.1.1/24, version 342041
Paths: (1 available, best #1, table 1)
Advertised to update-groups:
4 5
Refresh Epoch 1
65500
192.168.30.216 (via default) from 0.0.0.0 (192.168.109.214)
Origin incomplete, metric 1000, localpref 50, valid, sourced, best
Extended Community: SoO:0:214 RT:1:1
rx pathid: 0, tx pathid: 0x0
Updated on Aug 21 2020 11:23:32 GMT 3. 在cE2的WAN接口上再次建立连接。由于管理距离(AD)更佳,仍首选通过iBGP从cE1路由。
ce2(config)#
interface GigabitEthernet 2
ce2(config-if)#
no shutdown
ce2(config-if)#
end
Uncommitted changes found, commit them? [yes/no/CANCEL] yes
Commit complete.ce2#
show bgp vpnv4 unicast vrf 1 10.1.1.1/24
BGP routing table entry for 1:1:10.1.1.1/24, version 345276
Paths: (1 available, best #1, table 1)
Advertised to update-groups:
6
Refresh Epoch 1
65500
192.168.160.214 (via vrf 1) from 192.168.160.214 (192.168.109.214)
Origin incomplete, metric 1000, localpref 50, valid, internal, best
Extended Community: RT:1:1
rx pathid: 0, tx pathid: 0x0
Updated on Aug 21 2020 11:23:32 GMT cE1仍首选通过cE3发起的OMP的路由。请记住,cE1将OMP重分布到BGP中:
ce1#
show bgp vpnv4 unicast vrf 1 10.1.1.1/24
BGP routing table entry for 1:1:10.1.1.1/24, version 569358
Paths: (1 available, best #1, table 1)
Advertised to update-groups:
4 5
Refresh Epoch 1
65500
192.168.30.216 (via default) from 0.0.0.0 (192.168.109.214)
Origin incomplete, metric 1000, localpref 50, valid, sourced, best
Extended Community: SoO:0:214 RT:1:1
rx pathid: 0, tx pathid: 0x0
Updated on Aug 21 2020 15:13:09 GMT 4. 与R2的cE3连接会发生一些事情。为了进行测试,接口关闭,并且R2 BGP对等体丢失:
ce3(config)#
interface GigabitEthernet 6
ce3(config-if)#
shutdown
ce3(config-if)#
commit5. 因此,在cE1和cE2之间形成路由环路(cE2重分配来自OMP的路由并通过BGP通告到cE1,cE1重分配BGP到OMP并通告到cE2):
ce1#
show bgp vpnv4 unicast vrf 1 10.1.1.1/24
BGP routing table entry for 1:1:10.1.1.1/24, version 732548
Paths: (1 available, best #1, table 1)
Advertised to update-groups:
5
Refresh Epoch 1
65500
192.168.160.215 (via vrf 1) from 192.168.160.215 (192.168.109.215)
Origin incomplete, metric 1000, localpref 50, valid, internal, best
Extended Community: SoO:0:215 RT:1:1
rx pathid: 0, tx pathid: 0x0
Updated on Aug 21 2020 15:38:47 GMTce2#
show bgp vpnv4 unicast vrf 1 10.1.1.1/24
BGP routing table entry for 1:1:10.1.1.1/24, version 639650
Paths: (1 available, best #1, table 1)
Advertised to update-groups:
5 6
Refresh Epoch 1
65500
192.168.30.214 (via default) from 0.0.0.0 (192.168.109.215)
Origin incomplete, metric 1000, localpref 50, valid, sourced, best
Extended Community: SoO:0:215 RT:1:1
rx pathid: 1, tx pathid: 0x0
Updated on Aug 21 2020 15:38:47 GMT故障排除
有两种可能的解决方案。
解决方案 1
为OMP配置overlay-as。然后,将一些自治系统(AS)编号分配给OMP重叠本身。例如:
config-transaction
sdwan
omp
overlay-as 64512
exit默认情况下,OMP对BGP是透明的,即使配置了 propagate-aspath 也是如此。 overlay-as 是一项功能,它将在作为此命令的一个参数指定的AS预置到从OMP导出到BGP的路由的BGP AS_PATH属性之前。如果在重叠网络中的多个设备上配置相同的重叠AS编号,则所有这些设备都被视为同一AS的一部分。因此,它们不会转发任何包含重叠AS编号的路由,因此可以防止路由环路。
请记住, overlay-as 和 propagate-aspath 是相互依赖的。此功能将详细讨论。
存在两种情况。
Overlay-AS案例1
Overlay-AS案例1overlay-as 在 sdwan omp 部分下的全局级别上配置 propagate-aspath 但未配置(rest配置与最初介绍的相同:在 omp address-family ipv4 vrf 1 部分下启用 advertise bgp 并在 router bgp <AS> address-family ipv4 vrf 1 部分下配 redistribute omp 置)。
overlay-as 64512,在cE1/cE2和cE3上配置。
重叠即用演示的拓扑
出于演示目的,对cE1、cE2和cE3上的BGP AS进行了更改。
R1 - cE1/cE2仍通过eBGP对等,分别使用AS 65300和65401。
cE3 - R2仍通过eBGP对等,分别使用AS 65402和65500。
R1将路由(例如192.168.41.11/32)发送到cE1/cE2。cE1/cE2将此路由重分配到OMP中,没有任何AS_PATH属性。
cE3收到它并将其通告到指向R2的BGP中,仅使用它自己的AS(正常eBGP行为)。
R2上的路由1的AS_PATH为65402。
R2#
sh ip bgp | i 192.168.41.11/32
*> 192.168.41.11/32 192.168.60.216 1000 0 65402 ?Overlay-AS案例2
Overlay-AS案例2propagate-aspath 在 router bgp 部分下为特定服务端VPN (address-family ipv4 vrf 1)配置。这里还有子案例。
案例 2.1.在cE3上启用 overlay-as 后,在cE1/cE2的 router bgp 65401 address-family ipv4 vrf 1 下也启用 propagate-aspath 。
R1将路由route1发送到cE1/cE2。cE1/cE2使用来自R1站点的as-path将此路由重分配到OMP中。
vSmart上的OMP路由具有AS路径:65300。
vsmart1#
show omp routes vpn 1 192.168.41.11/32 | nomore | exclude not\ set
--------------------------------------------------- omp route entries for vpn 1 route 192.168.41.11/32 --------------------------------------------------- RECEIVED FROM: peer 192.168.30.214 path-id 81 label 1001 status C,R Attributes: originator 192.168.30.214 type installed tloc 192.168.30.214, biz-internet, ipsec overlay-id 1 site-id 25 origin-proto eBGP origin-metric 0 as-path "65300" RECEIVED FROM: peer 192.168.30.215 path-id 68 label 1002 status C,R Attributes: originator 192.168.30.215 type installed tloc 192.168.30.215, biz-internet, ipsec overlay-id 1 site-id 25 origin-proto eBGP origin-metric 0 as-path "65300"案例2.1.a.在cE3上禁用 propagate-aspath 后,cE3会将其作为OMP路由接收并将其通告到BGP中,忽略任何as-path属性,向R2重叠as,并仅添加自己的BGP AS(正常eBGP行为)。
R2上的路由1 AS路径:65402。
R2#
sh ip bgp | i 192.168.41.11/32
*> 192.168.41.11/32 192.168.60.216 1000 0 65402 ?案例2.1.b.在cE3上启用 propagate-aspath 后,cE3会将其作为OMP路由接收并通告到BGP中,将接收的as-path属性预置到R2之前,然后向R2添加Overlay-AS,后跟其自己的BGP AS。
R2上的路由1 AS路径:65402 64512 65300。
R2#
sh ip bgp | i 192.168.41.11/32
*> 192.168.41.11/32 192.168.60.216 1000 0 65402 64512 65300 ?案例2.1.c.在cE1/cE2上禁用 propagate-aspath 后,cE3将接收它作为不带任何as-path属性的OMP路由,并将其通告到BGP中指向R2,在Overlay-AS之前添加它自己的BGP AS。
R2上的Route1 AS路径:6540264512。
R2#
sh ip bgp | i 192.168.41.11/32
*> 192.168.41.11/32 192.168.60.216 1000 0 65402 64512 ?案例 2.2.未在cE3上配置 overlay-as 命令,会在cE1/cE2的router bgp 65401 address-family ipv4 vrf 1下启用 propagate-aspath 。
案例2.2.a.如果仅在cE3上禁用 propagate-aspath 功能,cE3会将其作为OMP路由接收并通告到BGP,忽略指向R2的任何AS_PATH属性,添加自己的BGP AS(正常eBGP行为)。
R2上的路由1 AS路径:65402。
R2#
sh ip bgp | i 192.168.41.11/32
*> 192.168.41.11/32 192.168.60.216 1000 0 65402 ?案例2.2.b.在cE3上启用 propagate-aspath 后,cE3会收到它作为OMP路由并将其通告到BGP中,在R2之前附加收到的AS_PATH属性,然后添加自己的AS。
R2上的Route1 AS路径:6540265300。
R2#
sh ip bgp | i 192.168.41.11/32
*> 192.168.41.11/32 192.168.60.216 1000 0 65402 65300 ?
注意:当您将AS-Path属性发送到OMP中时,边缘路由器不会添加自己的AS(正如文章中所示,当BGP路由通告到OMP中时,vEdge不会通告自己的AS)。如果远程边缘路由器收到的OMP路由在AS_PATH属性中带有自己的AS,则不会执行环路检测,并将带有已接收AS路径的路由发送到服务端的路由器。
解决方案 2
解决方案 2在路由器cE1和cE2上配置相同的site-id。尽管vSmart使用与路由自身相同的站点ID将路由通告回站点,但由于路由的发起方属性不同,因此不会触发环路预防,但不会形成控制平面路由环路,因为OMP路由未安装到RIB中。这是因为OMP路由处于Inv,U (Invalid,Unresolved)状态。默认情况下,除非配置 allow-same-site-tunnels 了数据平面隧道,否则无法在具有相同站点ID的站点之间建立数据平面隧道。如果数据平面隧道BFD会话处于关闭状态,则TLOC保持未解析状态。在下面的示例中,路由器ce1和ce2上都配置了 site-id 214215 。由cE2和cE1通告的路由10.0.0.2/32不会将其安装到路由表中,因为cE1和cE2之间不存在数据平面会话:
ce1#
show sdwan omp route 10.0.0.2/32 det | exc not set
--------------------------------------------------- omp route entries for vpn 3 route 10.0.0.2/32 --------------------------------------------------- RECEIVED FROM: peer 192.168.30.113 path-id 3 label 1004 status Inv,U Attributes: originator 192.168.30.215 type installed tloc 192.168.30.215, mpls, ipsec overlay-id 1 site-id 214215 origin-proto connected origin-metric 0 RECEIVED FROM: peer 192.168.30.113 path-id 4 label 1004 status Inv,U loss-reason tloc-id lost-to-peer 192.168.30.113 lost-to-path-id 3 Attributes: originator 192.168.30.215 type installed tloc 192.168.30.215, biz-internet, ipsec overlay-id 1 site-id 214215 origin-proto connected origin-metric 0 ce1#
show sdwan omp tlocs "ip 192.168.30.215" | exclude not set
--------------------------------------------------- tloc entries for 192.168.30.215 mpls ipsec --------------------------------------------------- RECEIVED FROM: peer 192.168.30.113 status C,I,R Attributes: attribute-type installed encap-proto 0 encap-spi 256 encap-auth sha1-hmac,ah-sha1-hmac encap-encrypt aes256 public-ip 192.168.110.215 public-port 12347 private-ip 192.168.110.215 private-port 12347 public-ip :: public-port 0 private-ip :: private-port 0 bfd-status down site-id 214215 preference 0 weight 1 version 3 gen-id 0x80000026 carrier default restrict 0 groups [ 0 ] bandwidth 0 qos-group default-group --------------------------------------------------- tloc entries for 192.168.30.215 biz-internet ipsec --------------------------------------------------- RECEIVED FROM: peer 192.168.30.113 status C,I,R Attributes: attribute-type installed encap-proto 0 encap-spi 256 encap-auth sha1-hmac,ah-sha1-hmac encap-encrypt aes256 public-ip 192.168.109.215 public-port 12347 private-ip 192.168.109.215 private-port 12347 public-ip :: public-port 0 private-ip :: private-port 0 bfd-status down site-id 214215 preference 0 weight 1 version 3 gen-id 0x80000026 carrier default restrict 0 groups [ 0 ] bandwidth 0 qos-group default-group ce1#
您可以在vSmart控制器上检查此命令,以了解哪些路由会收到特定前缀(请参阅“通告给”部分):
vsmart1#
show omp routes 10.1.1.0/24 detail | nomore | exclude not\ set
--------------------------------------------------- omp route entries for vpn 1 route 10.1.1.0/24 --------------------------------------------------- RECEIVED FROM: peer 192.168.30.216 path-id 68 label 1002 status C,R Attributes: originator 192.168.30.216 type installed tloc 192.168.30.216, biz-internet, ipsec overlay-id 1 site-id 216 origin-proto eBGP origin-metric 0 as-path 65500 ADVERTISED TO: peer 192.168.30.214 Attributes: originator 192.168.30.216 label 1002 path-id 5525 tloc 192.168.30.216, biz-internet, ipsec site-id 216 overlay-id 1 origin-proto eBGP origin-metric 0 as-path 65500 ADVERTISED TO: peer 192.168.30.215 Attributes: originator 192.168.30.216 label 1002 path-id 5287 tloc 192.168.30.216, biz-internet, ipsec site-id 216 overlay-id 1 origin-proto eBGP origin-metric 0 as-path 65500site-id 它们还保留为BGP源站点(SoO)扩展社区属性(您可在先前的输出中注意到SoO:0:<site-id>)。用于标识源自站点的路由,以便可以阻止该前缀的重新通告。为了使其正常运行,路由器必须发送扩展社区。将cE1配置为向路由器cE2发送扩展社区:
router bgp 65401 address-family ipv4 vrf 1 neighbor 192.168.160.215 send-community both SoO环路预防说明
SoO环路预防说明对于同一站点上的两个路由器是iBGP邻居的情况,SD-WAN具有内置的环路预防机制,以防止路由环路从OMP到BGP并从BGP返回到OMP。为了演示这一点,稍稍更新了拓扑,并在运行BGP AS65400 (cE1/cE2)的两台路由器上配置了相同的site-id 214215。在本示例中,从远程站点(cE3)将10.1.1.0/24前缀通告到OMP,并在站点214215的OMP (cE1-cE2)中获知。
SoO演示的拓扑
为了实现环路预防,使用BGP扩展社区SoO来显示哪个站点发起了该前缀。当此社区从OMP重分发到BGP时,会添加到前缀中。
两台设备中的neighbor语句都必须配置 send-community <both|extended> 命令(如图所示),才能使该功能正常工作。
cEdge1#
show run | sec router bgp
router bgp 65400 bgp log-neighbor-changes ! address-family ipv4 vrf 1 redistribute omp neighbor 192.168.160.215 remote-as 65400 neighbor 192.168.160.215 activate neighbor 192.168.160.215 send-community both exit-address-family cEdge2#
show run | sec router bgp
router bgp 65400 bgp log-neighbor-changes ! address-family ipv4 vrf 1 neighbor 192.168.160.214 remote-as 65400 neighbor 192.168.160.214 activate neighbor 192.168.160.214 send-community both exit-address-family通过广告或接收站点的 show bgp vpnv4 unicast vrf 1 <prefix> 命令的输出可以查看扩展社区。
示例
cEdge1#
show bgp vpnv4 unicast vrf 1 10.1.1.1
BGP routing table entry for 1:10:10.1.1.1/24, version 4 Paths: (1 available, best #1, table 1) Advertised to update-groups: 1 Refresh Epoch 1 Local 192.168.30.215 (via default) from 0.0.0.0 (192.168.109.215) Origin incomplete, metric 1000, localpref 50, valid, sourced, best Extended Community: SoO:0:214215 RT:1:1 rx pathid: 0, tx pathid: 0x0 Updated on Jul 5 2152 23:30:55 UTC在将前缀从OMP通告到BGP的路由器上(本示例中为cEdge1),RIB中必须仅存在OMP路由。
示例
cEdge1#
show ip route vrf 1 10.1.1.1
Routing Table: 1
Routing entry for 10.1.1.1/32
Known via "omp", distance 251, metric 0, type omp
Redistributing via bgp 65400
Advertised by bgp 65400
Last update from 192.168.30.215 on Sdwan-system-intf, 15:59:54 ago
Routing Descriptor Blocks:
* 192.168.30.215 (default), from 192.168.30.215, 15:59:54 ago, via Sdwan-system-intf
Route metric is 0, traffic share count is 1但是,可能会发生争用条件出现在接收通告前缀的第二台路由器上,并且导致BGP路由在获知OMP路由之前安装到RIB中。
在cEdge2上,sh bpg vpnv4 unicast vrf 1 <prefix>的输出显示如下:
- 未通告给任何对等体。
- 扩展社区包括站点ID 214215,此站点与此路由器位于的站点相同。
示例
cEdge2#
show bgp vpnv4 unicast vrf 1 10.1.1.1
BGP routing table entry for 1:1:10.1.1.1/24, version 32
Paths: (1 available, best #1, table 1)
Not advertised to any peer
Refresh Epoch 1
Local
192.168.160.214 (via vrf 1) from 192.168.160.214 (192.168.54.11)
Origin incomplete, metric 1000, localpref 50, valid, internal, best
Extended Community: SoO:0:214215 RT:65512:10
rx pathid: 0, tx pathid: 0x0
Updated on Jul 6 2152 17:26:19 UTC在cEdge2上, sh ip route vrf <vrf_number> <prefix> 的输出显示如下:
- 可以看到“SDWAN Down”标志,表明检测到该事件来自同一站点。
- 路由的管理距离是252(高于OMP并且不同于预期的iBGP AD 200)。
示例
cEdge2#
show ip route vrf 1 10.1.1.1
Routing Table: 1
Routing entry for 10.1.1.0/24
Known via "bgp 65400",
distance 252
, metric 1000, type internal
Redistributing via omp
Last update from 192.168.160.214 00:15:13 ago
Routing Descriptor Blocks:
* 192.168.160.214, from 192.168.160.214, 00:15:13 ago
opaque_ptr 0x7F9DD0B86818
SDWAN Down
Route metric is 1000, traffic share count is 1
AS Hops 0
MPLS label: none当站点路由器检测到BGP获知的路由来自同一站点ID时,该路由不会通告回OMP。
相关信息
相关信息 修订历史记录
| 版本 | 发布日期 | 备注 |
|---|---|---|
5.0 |
17-May-2024 |
重新认证 |
4.0 |
10-Nov-2022 |
首次公开发布 |
3.0 |
16-Aug-2022 |
增加了“SoO环路预防说明”部分。 |
2.0 |
04-Nov-2021 |
已更新“故障排除”部分中的解决方案2。 |
1.0 |
01-Sep-2020 |
初始版本 |
反馈