Hi all, I'm scratching my head over this one and I'm sure the answer is very simple. I have four routers:
R1 --- R2 | | | | R3 --- R4 R1 and R2 are L1/L2 routers. R3 and R4 are L1-only routers. Due to IOS's inability to do MD5 authentication at level 2, I cannot make R3 and R4 L1/L2 routers. R1 and R2 are running 9.6R3.8. Now the problem... I have 'interface lo0.0 passive' configured on both R1 and R2. The loopback is being injected into the L1 level, then being re-injected back into the L2 level when it's seen from R3 and R4. I've tried messing with the preference values for level 2 on R1 and R2, but the loopbacks are always being preferred through the L1 level. If I configure 'interface lo0.0 level 1 disable' on R1 and R2, the loopbacks disappear, but then I end up with BGP recursive route lookups from R3 and R4. I'd prefer not to configure static routes for the R1 and R2 loopbacks on R3 and R4, but that seems to be my only recourse at this point. Am I missing something simple here or am I just going to have to do the static routes on R3 and R4, redistribute those between R3 and R4, but deny their redistribution up to level 2? Thanks, evt _______________________________________________ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
