Re: [c-nsp] BGP maximum-prefix on ASR9000s
> Have you tested what happens with an XR BGP when a valid peer sends you > ~2,147,483,647 prefixes please? > > My guess is the BGP runs out of memory and restarts -what happens to the > FIB on all line-cards I'm not even guessing... > And then the RRs pushing 2bilions of prefixes to all other PEs in the AS... > I actually haven't tested so would be interested to know. > > Anyways I'd rather have the offending internet peer/peers reset at around > 1M or so -while BGP and line-cards can still cope with the load. > Of course VPN customers have lower thresholds. > > adam > I had some maintenance to perform on an ASR9001 (32bit IOS-XR) - there was a point in time during the maintenance where it only had installed routes from our RRs. Device#sh bgp all unicast summary wide Wed Feb 12 13:48:14.246 UTC Address Family: IPv4 Unicast BGP router identifier , local AS number 38195 BGP generic scan interval 60 secs Non-stop routing is enabled BGP table state: Active Table ID: 0xe000 RD version: 7020912 BGP main routing table version 7020912 BGP NSR Initial initsync version 9 (Reached) BGP NSR/ISSU Sync-Group versions 0/0 BGP scan interval 60 secs BGP is operating in STANDALONE mode. Process RcvTblVer bRIB/RIB LabelVer ImportVer SendTblVer StandbyVer Speaker 7020912702091270209127020912 7020912 0 NeighborSpk ASMsgRcvdMsgSent TblVer InQ OutQUp/Down St/PfxRcd rr-ip 0 38195 384291158 7020912 0 0 00:23:062297554 rr-ip 0 38195 384189157 7020912 0 0 00:22:582297548 rr-ip 0 38195 384858157 7020912 0 0 00:22:582297550 Address Family: IPv6 Unicast BGP router identifier , local AS number 38195 BGP generic scan interval 60 secs Non-stop routing is enabled BGP table state: Active Table ID: 0xe080 RD version: 841464 BGP main routing table version 841464 BGP NSR Initial initsync version 6 (Reached) BGP NSR/ISSU Sync-Group versions 0/0 BGP scan interval 60 secs BGP is operating in STANDALONE mode. Process RcvTblVer bRIB/RIB LabelVer ImportVer SendTblVer StandbyVer Speaker 841464 841463 841464 841463 841463 0 NeighborSpk ASMsgRcvdMsgSent TblVer InQ OutQUp/Down St/PfxRcd rr-ip 0 38195 104261145 841463 0 0 00:23:06 249910 rr-ip 0 38195 104244143 841463 0 0 00:22:48 249910 rr-ip 0 38195 104322145 841463 0 0 00:23:06 249910 Happy to report that it didn't explode. Thanks Tim. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] new ASR9901 ios update problem
eXR makes this so much easier. Other than the pain of 6.3.2 -> 6.3.3 (where RPM moved to code signing) pretty much none of that is necessary. But yeah, 3* lines should get you from any version > 6.3.3 to any other version. ([conf t, fpd auto-upgrade enable, commit, end,] copy url:///file harddisk:/ [vrf ], install add source harddisk:/ , install activate id ) You can even stage the install during normal hours so the final activation happens much faster (copy, install add source, install prepare then later on install activate). But - if you really don't want to spend a few minutes setting up a tarball with all of the packages you want installed in one go then I hear CSM might be the solution. Also should handle RPM hell if you have lots of SMUs... > -Original Message- > From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of > Aaron Gould > Sent: Wednesday, 30 October 2019 1:33 AM > To: c...@marenda.net; cisco-nsp@puck.nether.net > Subject: Re: [c-nsp] new ASR9901 ios update problem > > Btw, good job, and thanks Jürgen for the informative and detailed > instruction on XR upgrade. > > -Aaron > > -Original Message- > From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of > Aaron Gould > Sent: Tuesday, October 29, 2019 10:23 AM > To: c...@marenda.net; cisco-nsp@puck.nether.net > Subject: Re: [c-nsp] new ASR9901 ios update problem > > You just gave me another reason to like Juniper :| > > -Aaron > > > ___ > cisco-nsp mailing list cisco-nsp@puck.nether.net > https://puck.nether.net/mailman/listinfo/cisco-nsp > archive at http://puck.nether.net/pipermail/cisco-nsp/ > > ___ > cisco-nsp mailing list cisco-nsp@puck.nether.net > https://puck.nether.net/mailman/listinfo/cisco-nsp > archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] ASR920 is a ticking timebomb (CSCvk35460)
> Extreme (ex-Brocade) CER-RT I'd heard Extreme were looking to EOL/EOS that box. It's too slow for 2019 anyway and has some pretty critical bugs that I don't think can be fixed. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] ASR 99xx IOS-XR images are all EoL/EoS?
> Mr. Ytti successfully predicted that they'd "probably" only make 32-bit > up to around version 6.5, so that sounds like it's right on the money. When I saw a version 6 XR image for an ASR9001 I was shocked. I had been told quite a while ago that 5.3.4 was it and no to expect anything newer. > I applaud Cisco for moving away from QNX, but I haven't heard anything > positive about the 64-bit XR variant as yet. YMMV. "Is don, is good". I use it a lot in my day job and it's been fine. -Tim ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BGP DFZ convergence time - FIB programming
> For us, customer-triggered RTBH is provided as standard for all eBGP sessions > with customers. Once they send us the right community with their own > routes, we just pass that community on to the RR's via iBGP. The RR will relay > those routes to all other devices in the network, and as long as those devices > see that community (and are permitted to act on said community), traffic to > the routes that carry the community is dropped locally on those devices. > Sounds standard practice. > > We don't perform any ingress iBGP policy for RTBH anywhere in the network. We match incoming routes tagged with RTBH from the RR and rewrite to the appropriate next-hop "/dev/null" by address family, which it sounds a lot like what you guys do. I would consider this to be "policy". Why would you not? > > Mark. -Tim. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BGP DFZ convergence time - FIB programming
> -Original Message- > From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of > Robert Raszuk > So for educational purposes could you describe some real valid use cases to > apply bgp policies on routes *received* over IBGP ? > > Thx, > Robert. Setting local preference? Rewriting next hop? ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] XR on GNS3
> XRv is simple control-plane of XR in a VM. This is why L2 forwarding isnt > supported (though is configured). > XRv9000 is full control- and data-plane and much tighter coupling of the two. > L2 forwarding should work, but L2VPNs and such will fail miserably. > > q. XRv9000 6.4.1 works fine - the next issue is that the forwarding plane is limited to 128kbps without a licence... ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Difference betwen Cisco 7301 and ASR 1002 in vpdn ?
I'd start here: Apr 2 07:57:46.146: RADIUS: AAA Unsupported Attr: interface [175] 15 -Original Message- From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Olivier CALVANO Sent: Sunday, 2 April 2017 5:59 PM To: cisco-nsp@puck.nether.net Subject: [c-nsp] Difference betwen Cisco 7301 and ASR 1002 in vpdn ? Hi, i have a small problems, i have two router: On a Old Cisco 7301 : Cisco IOS Software, 7301 Software (C7301-ADVENTERPRISEK9-M), Version 12.4(24)T8, RELEASE SOFTWARE (fc with l2tp/ppp forwarding: vpdn enable vpdn multihop vpdn authen-before-forward vpdn logging vpdn logging local vpdn logging tunnel-drop vpdn history failure table-size 50 vpdn-group LNS accept-dialin protocol l2tp virtual-template 1 terminate-from hostname LAC-172.16.1.1 local name LNS-172.16.1.1 lcp renegotiation always no l2tp tunnel authentication l2tp tunnel receive-window 500 l2tp tunnel retransmit retries 7 l2tp tunnel retransmit timeout min 2 l2tp tunnel retransmit timeout max 7 interface Virtual-Template1 mtu 1460 ip unnumbered Loopback100 ip tcp adjust-mss 1420 no logging event link-status no peer default ip address keepalive 20 ppp mtu adaptive ppp authentication chap ppp-radius ppp multilink on this router, no problems session is received and forwarded to the final router. On the Cisco ASR1002: Cisco IOS XE Software, Version 03.13.06a.S - Extended Support Release Cisco IOS Software, ASR1000 Software (PPC_LINUX_IOSD-ADVENTERPRISEK9-M), Version 15.4(3)S6a, RELEASE SOFTWARE (fc2) vpdn enable vpdn multihop vpdn authen-before-forward vpdn logging vpdn logging local vpdn logging user vpdn logging tunnel-drop vpdn history failure table-size 50 vpdn-group LNS accept-dialin protocol l2tp virtual-template 1 terminate-from hostname LAC-172.16.1.2 local name LNS-172.16.1.2 lcp renegotiation always no l2tp tunnel authentication l2tp tunnel receive-window 500 l2tp tunnel retransmit retries 7 l2tp tunnel retransmit timeout min 2 l2tp tunnel retransmit timeout max 7 interface Virtual-Template1 mtu 1460 ip unnumbered Loopback100 ip tcp adjust-mss 1420 no logging event link-status no peer default ip address keepalive 20 ppp mtu adaptive ppp authentication chap ppp-radius ppp multilink It's the same radius server, radius answer are identic (only change IP and terminate-from, local name) On the cisco 7301, the session are correctly forwarded, on the ASR no, the ASR create a interface: Apr 2 07:12:47.086: VPDN uid:123 Virtual interface created for username@myrealm bandwidth 25000 Kbps Apr 2 07:12:47.086: VPDN Vi2.1 Virtual interface created for username@myrealm, bandwidth 25000 Kbps a debug radius on ASR: Apr 2 07:12:47.034: RADIUS/ENCODE(3352):Orig. component type = VPDN Apr 2 07:12:47.034: RADIUS: DSL line rate attributes successfully added Apr 2 07:12:47.035: RADIUS(3352): Config NAS IP: 172.16.1.2 Apr 2 07:12:47.035: RADIUS(3352): Config NAS IPv6: :: Apr 2 07:12:47.035: RADIUS/ENCODE(3352): acct_session_id: 13128 Apr 2 07:12:47.035: RADIUS(3352): sending Apr 2 07:12:47.035: RADIUS(3352): Send Access-Request to 192.168.50.100:1812 id 1645/123, len 148 Apr 2 07:12:47.035: RADIUS: authenticator 07 51 45 7E 07 E7 81 19 - CC B0 03 4D AE 43 84 7C Apr 2 07:12:47.035: RADIUS: Framed-Protocol [7] 6 PPP [1] Apr 2 07:12:47.035: RADIUS: User-Name [1] 42 "username@myrealm" Apr 2 07:12:47.035: RADIUS: CHAP-Password [3] 19 * Apr 2 07:12:47.035: RADIUS: Connect-Info[77] 20 "2500/14976" Apr 2 07:12:47.035: RADIUS: NAS-Port-Type [61] 6 ISDN [2] Apr 2 07:12:47.035: RADIUS: NAS-Port[5] 6 20123 Apr 2 07:12:47.035: RADIUS: NAS-Port-Id [87] 17 "Uniq-Sess-ID123" Apr 2 07:12:47.035: RADIUS: Service-Type[6] 6 Framed [2] Apr 2 07:12:47.035: RADIUS: NAS-IP-Address [4] 6 172.16.1.2 Apr 2 07:12:47.035: RADIUS(3352): Sending a IPv4 Radius Packet Apr 2 07:12:47.035: RADIUS(3352): Started 5 sec timeout Apr 2 07:12:47.072: RADIUS: Received from id 1645/123 192.168.50.100:1812, Access-Accept, len 159 Apr 2 07:12:47.072: RADIUS: authenticator C7 30 3D 06 C2 CF 60 1A - 23 16 3B FE DC 88 2E 86 Apr 2 07:12:47.072: RADIUS: Service-Type[6] 6 Outbound [5] Apr 2 07:12:47.073: RADIUS: Framed-Protocol [7] 6 PPP [1] Apr 2 07:12:47.073: RADIUS: Tunnel-Type [64] 6 00:L2TP [3] Apr 2 07:12:47.073: RADIUS: Tunnel-Medium-Type [65] 6 00:IPv4 [1] Apr 2 07:12:47.073: RADIUS: Tunnel-Client-Auth-I[90] 19 "LAC-172.16.1.2" Apr 2 07:12:47.073: RADIUS: Tunnel-Server-Auth-I[91] 19 "LNS-172.16.1.2" Apr 2 07:12:47.073: RADIUS: Tunnel-Server-Endpoi[67] 15 "172.16.1.200" Apr 2 07:12:47.073: RADIUS: Tunnel-Assignment-Id[82] 14 "LNS-Out" Apr 2 07:12:47.073: RADIUS: Tunnel-Client-Endpoi[66] 14 "172.
[c-nsp] IOS-XRv 9000 v6.0.0 and high cpu
Hi All, Has anyone had an opportunity to play with the IOS-XRv 9K version 6.0.0 image? Are you seeing high CPU usage (even with all ports shut down?) Just trying to ascertain why its burning through 2 cores for what seems to be no real good reason. Thanks Tim. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] 10Gb+ "Core" w/ Netflow
FTFY - w/QOS(Shaping) - 60Gb(Without any additional licenses) > -Original Message- > From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of > CiscoNSP List > Sent: Saturday, 14 March 2015 3:55 PM > To: Jeremy Bresley; cisco-nsp@puck.nether.net > Subject: Re: [c-nsp] 10Gb+ "Core" w/ Netflow > > Excellent info mate! Really appreciate it. > > So, the AS9001 (the non "S") version, all 4 onboard 10G ports are "active", > can do 120Gb(Without any additional licenses), supports MPLS, VPLS, > L3VPNs, QOS(Shaping) + Netflow(that works :) ) without any additional > licenses? (As I see licenses for VRF + L3VPN - Are these required for > "vanilla" VRF support? Or are they for something additional?) > > You do need to purchase 2 x power supplies (I assume) > And if I want to throw a 4x10Gb line card or 20x1G line card - There's not > additional licensing required to activate those cards/slots? > > but nothing else? ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] ASR1006 Memory issue
Watch your rommon version too. > -Original Message- > From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of > Jordi Magrané Roig > Sent: Monday, 15 December 2014 11:34 PM > To: mark.ti...@seacom.mu; cisco-nsp@puck.nether.net > Subject: Re: [c-nsp] ASR1006 Memory issue > > Hello, > > Lukas and Mark, thanks for the information. I'm planning to upgrade > the device but it will take some weeks. My worry is to check now if the > device has problems. > > Somebody knows how I could check if the device is working fine? > > Thanks! > > > From: mark.ti...@seacom.mu > > To: cisco-nsp@puck.nether.net > > Subject: Re: [c-nsp] ASR1006 Memory issue > > Date: Mon, 15 Dec 2014 13:51:32 +0200 > > CC: luky...@hotmail.com; jordimagr...@hotmail.com > > > > On Monday, December 15, 2014 01:08:32 PM Lukas Tribus wrote: > > > > > I suggest you ugprade to the latest rebuild of a > > > supported long-term support branch (3.10S?). > > > > I'd say go to 3.10(4)S, which is 15.3(3)S4. > > > > We were on 15.4(2)S earlier and that has some serious BGP > > bugs that lead to router crashes, as well as other random > > crashes. > > > > Suffice it to say, Cisco say 3.10(4)S is their recommended > > release for this platform. > > > > Mark. > > ___ > cisco-nsp mailing list cisco-nsp@puck.nether.net > https://puck.nether.net/mailman/listinfo/cisco-nsp > archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Cisco ASA 5512-X DHCP server pool size
> From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of > Lee Starnes > Hello, > > Does anyone know if there is a way to increase the DHCP server pool size > beyond 255 addresses? License key or anything that can be obtained from > Cisco? A search of the Cisco site turned up nothing about DHCP pool sizes. > Seems like a really poor limitation. > > Best > > Lee Can't just increase your subnet size? ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Peering with AS larger than 65535
> > > Have an oldish 7200-G2 in the lab that I need to setup with test peering > > > with an AS larger than 65535 - It does not accept asdot notation (i.e. > > > throws an error when I enter the converted AS - It doesnt like the "."). AS>65535 = Peer with AS23456 This is its purpose. Otherwise on your 7200 12.4-24T4 or better should support 32bit ASN in ASDOT notation. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] ipv6 route track
Afternoon, Is there an IOS that supports ipv6 route track? Thanks -Tim ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TCP Timer 70% CPU
> I have a Cisco 3825 with 1GB Ram doing some BGP peering (VERY low > traffic, not even 5mbit/s sustained throughput). Memory usage is > absolutely fine and sitting at less than 50% utilization, and stable. > > The Router's CPU is showing an almost linear increases, and the 'TCP > Timer' process is currently sitting at over 70% CPU load. Cisco > documentation suggests: > TCP Timer > > What can I look at possibly to determine root cause and fix? > Hi Chris, Any chance one of your BGP sessions are down? ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] LNS Error %VPDN-3-NORESOURCE:
> -Original Message- > From: ar [mailto:ar_...@yahoo.com] > Sent: Thursday, 14 June 2012 10:26 PM > To: Tim Warnock; 'cisco-nsp' > Subject: Re: [c-nsp] LNS Error %VPDN-3-NORESOURCE: > > #sho processes memory | i Free > Processor Pool Total: 1872053612 Used: 58648856 Free: 1813404756 > I/O Pool Total: 67108864 Used:4561056 Free: 62547808 > Transient Pool Total: 16777216 Used: 348596 Free: 16428620 > PID TTY Allocated FreedHoldingGetbufsRetbufs Process > Can you try c7200p-advipservicesk9-mz.122-33.SRE6.bin if you are entitled to it? Smells like a bug to me. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] LNS Error %VPDN-3-NORESOURCE:
> I used cisco output interpreter and got the following explanation below. > But I dont have any memory/cpu problem on the router. > Router has no load actually. No subscribers connected yet and is designed to > handle l2tp clients only. > What is the output of: show processes memory | i Free ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Fibre link flapping
> -Original Message- > From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp- > boun...@puck.nether.net] On Behalf Of Ambedkar > Sent: Wednesday, 22 February 2012 2:37 PM > To: cisco-nsp@puck.nether.net > Subject: Re: [c-nsp] Fibre link flapping > > Thanks for the suggestions... > > I checked the fibre with Fluke meter, the loss is very high in one of the > cores, i cleaned with proper solutions provided by fluke. In this case, is > it possible that one side the link is down and other side there is no link > change in the switch ? > > Thanks, > Ambi. > Yes TX -> RX RX -> TX If you wish to shut the port down in the case of unidirectionality have a look at BFD. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] adjust volume on voice bri
Hi List, Would someone know how (if it's possible) to adjust the volume/gain on a voice BRI in ccme? Thanks, Tim. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] 2811 password recovery
> -Original Message- > From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp- > boun...@puck.nether.net] On Behalf Of Hemal Shah > Sent: Thursday, 11 August 2011 7:12 PM > To: cisco-nsp@puck.nether.net > Subject: [c-nsp] 2811 password recovery > > Hi , > I am trying to recover password for cisco 2811 router without success. > I need to enter break sequence to receive rommon. > How can I do that using DELL XPS M1330. > Do any one know Break sequence to log in rommon mode of router 2811 > using > Dell XPS M1330 > I have tried many break sequence without success. > Thanks in advance > Hemal An old trick is to put your serial port to 1200bps and hold down the space bar while the router boots... Only works if your original speed is 9600bps. Also, if you have physical access, you can try and pull the flash card out. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] l2tp-class encrypted password recalculated (CSCso12545)
Hi All, A while ago there was a discussion of L2TPv3 passwords being recalculated after a 'show run'. Was there ever a fix for it? Thanks Tim. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] c6500 turn interface up whitout any physical device connected to it
> I could use loopback interfaces instead but I ll get /32 mask advertised over > ospf ... and I want to advertise a network mask > like /24. Or an other solution may be to resdtribute static null route with > /24 prefix from this routeur ... > A loopback interface is an interface - if you want to put a /24 on it you can. Why but? BTW: *If* you managed to get an Ethernet port up - you are going to create a black hole for the /24 anyway... ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
