AD 200 route preferred over AD 90

Started by wintermute000, August 08, 2015, 04:15:27 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

wintermute000

August 08, 2015, 04:15:27 AM Last Edit: August 08, 2015, 04:17:05 AM by wintermute000
Yes read that right.
Can anyone explain the below output? ???


In a nutshell, I got into a situation where a EIGRPv6 route was being overridden by a vpnv6 route via MP-BGP.
The MP-BGP route is via iBGP with AD200 - why would it take precedence?
In particular, 'backup via' - what's that all about? FWIW I do NOT have fast-reroute/LFA turned on.





R2#show ipv6 route vrf CustA 2001:10:245:2::8/127
Routing entry for 2001:10:245:2::8/127
  Known via "bgp 101", distance 200, metric 1536000, type internal
  Redistributing via eigrp 925
  Backup from "eigrp 925 [90]"
  Route count is 1/1, share count 0
  Routing paths:
    122.1.1.1%default indirectly connected
      MPLS label: 37
      Last updated 00:03:42 ago


Followup: I got rid of this via redistributing the EIGRP route into BGP as well. This meant the local weight 100 route took precedence over the iBGP learnt route, but as soon as that happens, the EIGRPv6 route goes back into the RiB (as you'd expect). Are VPNvX routes treated differently?




EDIT::: OMG its this stuff. As the MP-BGP route is imported from same EIGRPv6 ASN, the extended communities are passed and the router does a metric to community aka the metric comparison i.e. ignores the AD. GAH! :choke:
http://blog.ine.com/2010/07/19/mpls-and-eigrp-going-the-distance-admin-distance/

deanwebb

#1
August 08, 2015, 09:47:01 AM
So, what you're saying is... it's not the firewall. :mrgreen:
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.

srg

#2
August 08, 2015, 10:01:20 AM
Quote from: deanwebb on August 08, 2015, 09:47:01 AM
So, what you're saying is... it's not the firewall. :mrgreen:
it's always the firewall >;P
som om sinnet hade svartnat för evigt.

deanwebb

#3
August 08, 2015, 11:48:24 AM
Quote from: srg on August 08, 2015, 10:01:20 AM
Quote from: deanwebb on August 08, 2015, 09:47:01 AM
So, what you're saying is... it's not the firewall. :mrgreen:
it's always the firewall >;P
It's always the LOAD BALANCER.
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.

that1guy15

#4
August 10, 2015, 08:35:47 AM
Yup, you beat me to the punch wintermute000.

Drill into your head that anytime EIGRP and BGP work together BGP will pass EIGRP attributes via communities. There are some odd design issues with this you can run into and just like this it leaves you with a sense of WTF!?! I think we had a similar thread about the same thing bit ago but it was for v4.

Route-maps are recommended to get the results you want.
That1guy15
@that1guy_15
blog.movingonesandzeros.net

that1guy15

#5
August 10, 2015, 08:39:25 AM
Quote from: deanwebb on August 08, 2015, 11:48:24 AM
Quote from: srg on August 08, 2015, 10:01:20 AM
Quote from: deanwebb on August 08, 2015, 09:47:01 AM
So, what you're saying is... it's not the firewall. :mrgreen:
it's always the firewall >;P
It's always the LOAD BALANCER.

Uh, if its not the network , nor the firewall or load balancer then what could it be??? I check my application service is running and I can ping the remote server so it cant be my app! Why does your network always suck!?!
That1guy15
@that1guy_15
blog.movingonesandzeros.net

NetworkGroover

#6
August 10, 2015, 11:02:05 AM
Quote from: that1guy15 on August 10, 2015, 08:39:25 AM
Uh, if its not the network , nor the firewall or load balancer then what could it be??? I check my application service is running and I can ping the remote server so it cant be my app! Why does your network always suck!?!

Seems legit.
Engineer by day, DJ by night, family first always

NetworkGroover

#7
August 10, 2015, 11:02:56 AM
Quote from: that1guy15 on August 10, 2015, 08:35:47 AM
Yup, you beat me to the punch wintermute000.

Drill into your head that anytime EIGRP and BGP work together BGP will pass EIGRP attributes via communities. There are some odd design issues with this you can run into and just like this it leaves you with a sense of WTF!?! I think we had a similar thread about the same thing bit ago but it was for v4.

Route-maps are recommended to get the results you want.

Yet another reason not to run proprietary protocols....  :problem?:
Engineer by day, DJ by night, family first always

that1guy15

#8
August 10, 2015, 12:27:48 PM
Quote from: AspiringNetworker on August 10, 2015, 11:02:56 AM
Quote from: that1guy15 on August 10, 2015, 08:35:47 AM
Yup, you beat me to the punch wintermute000.

Drill into your head that anytime EIGRP and BGP work together BGP will pass EIGRP attributes via communities. There are some odd design issues with this you can run into and just like this it leaves you with a sense of WTF!?! I think we had a similar thread about the same thing bit ago but it was for v4.

Route-maps are recommended to get the results you want.

Yet another reason not to run proprietary protocols....  :problem?:

Cant go there. BGP does the same with OSPF in some situations. Why do you think vrf-lite exist?
That1guy15
@that1guy_15
blog.movingonesandzeros.net
Print
Go Up Pages1
User actions