Is it me or does BGP not allow you to form a peering session unless you have a route to the host in the routing table, no matter what. It closes connected sessions even if I have policy route data forwarding configured and even if traffic is forwarding correctly. Is there some knob I'm forgetting about (other than using a static classful route to null0)? My little diagram... 178.24.1.1/32 204.22.10.1/32 Lo Lo | | R6 R7 | | S0 S0 192.1.1/24 (.3) (.1) a. No static routes entered on R6 or R7 b. BGP peers w/ loopback addresses Here's 11.3 (R7) forgetting that it can reach the 12.0 router via policy (debug output on R7) 3d05h: BGP: 178.24.1.1 remote close, state CLOSEWAIT 3d05h: BGP: 178.24.1.1 closing (This message repeated indefinitely) 3d05h: BGP: 178.24.1.1 multihop open delayed 10112ms (no route) 3d05h: BGP: 178.24.1.1 multihop open delayed 12784ms (no route) (traffic is forwarding!) r7#ping 178.24.1.1 Sending 5, 100-byte ICMP Echos to 178.24.1.1, timeout is 2 seconds: !!!!! r7#config t r7(config)#ip route 178.24.1.1 255.255.255.255 192.1.1.3[Ctl-Z] [a few seconds later] (debug output on R7) 3d05h: BGP: 178.24.1.1 open active, local address 204.22.10.1 r7#config t r7(config)#no ip route 178.24.1.1 255.255.255.255 192.1.1.3[Ctl-Z] [a few seconds later] (debug output on R7) 3d07h: BGP: 178.24.1.1 multihop open delayed 17648ms (no route) grrr..... (configs below) Thanks for looking this over. WAYNE BAETY, MCSE, A1C, USAF Network Systems Trainer ROUTER 6 CONFIG---------------------------------------------------- version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname r6 ! logging buffered warnings logging console warnings enable password cisco ! username cisco password 0 cisco ! ! ! ! ip subnet-zero ! ! ! process-max-time 200 ! interface Loopback0 ip address 178.24.1.1 255.255.255.255 no ip directed-broadcast ! interface Ethernet0 ip address 10.0.0.6 255.255.255.0 secondary ip address 6.6.6.6 255.255.255.0 no ip directed-broadcast ! interface Serial0 no ip address no ip directed-broadcast encapsulation frame-relay no ip mroute-cache no fair-queue clockrate 250000 cdp enable frame-relay lmi-type cisco ! interface Serial0.1 point-to-point ip address 10.255.1.2 255.255.255.252 no ip directed-broadcast ip nat inside frame-relay interface-dlci 601 ! interface Serial0.2 point-to-point ip address 192.1.1.3 255.255.255.0 no ip directed-broadcast ip nat outside ip policy route-map ebgp-rehop frame-relay interface-dlci 607 ! interface Serial1 no ip address no ip directed-broadcast shutdown ! router bgp 300 network 178.24.0.0 neighbor 204.22.10.1 remote-as 100 neighbor 204.22.10.1 ebgp-multihop 2 neighbor 204.22.10.1 update-source Loopback0 ! ip local policy route-map ebgp-rehop ip nat pool dynamic-net-pool 178.24.16.1 178.24.191.254 prefix-length 16 ip nat inside source list 1 pool dynamic-net-pool ip nat inside source static 178.24.3.13 10.253.1.1 ip classless no ip http server ! access-list 1 permit 10.0.0.0 0.255.255.255 access-list 101 permit tcp any host 204.22.10.1 eq bgp access-list 101 permit icmp any host 204.22.10.1 echo access-list 101 permit icmp any host 204.22.10.1 echo-reply route-map ebgp-rehop permit 10 match ip address 101 set ip default next-hop 192.1.1.1 ! ! line con 0 exec-timeout 0 0 logging synchronous transport input none line aux 0 line vty 0 4 exec-timeout 0 0 logging synchronous login local monitor ----------------------------------------------------END ROUTER 6 CONFIG ROUTER 7 CONFIG ---------------------------------------------------- version 11.3 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname r7 ! enable password cisco ! username cisco password 0 cisco ip subnet-zero ip nat pool dynamic-net-pool 204.22.10.16 204.22.10.191 prefix-length 24 ip nat inside source list 1 pool dynamic-net-pool ip nat inside source static 204.22.10.13 20.255.1.5 ! ! interface Loopback0 ip address 204.22.10.1 255.255.255.255 ! interface Ethernet0 ip address 10.0.0.7 255.255.255.0 secondary ip address 7.7.7.7 255.255.255.0 ! interface Serial0 no ip address encapsulation frame-relay no ip mroute-cache no fair-queue clockrate 250000 frame-relay lmi-type cisco ! interface Serial0.1 point-to-point ip address 20.255.1.2 255.255.255.252 ip nat inside no arp frame-relay frame-relay interface-dlci 705 ! interface Serial0.2 point-to-point ip address 192.1.1.1 255.255.255.0 ip nat outside frame-relay interface-dlci 706 ! interface Serial1 no ip address shutdown ! router bgp 100 network 204.22.10.0 neighbor 178.24.1.1 remote-as 300 neighbor 178.24.1.1 ebgp-multihop 2 neighbor 178.24.1.1 update-source Loopback0 ! ip local policy route-map ebgp-rehop ip classless ip route 178.24.1.1 255.255.255.255 192.1.1.3 ! logging buffered warnings logging console warnings access-list 1 permit 20.0.0.0 0.255.255.255 access-list 101 permit tcp any host 178.24.1.1 eq bgp access-list 101 permit icmp any host 178.24.1.1 echo access-list 101 permit icmp any host 178.24.1.1 echo-reply route-map ebgp-rehop permit 10 match ip address 101 set ip default next-hop 192.1.1.3 ! ! line con 0 exec-timeout 0 0 logging synchronous line aux 0 line vty 0 4 exec-timeout 0 0 logging synchronous login local monitor
Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=27976&t=27976 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]