高级会员
 精华: 1
 积分: 518
 帖子: 61  威望: 181 点 金钱: 120 币 贡献: 78 点 经验: 02级 
 阅读权限: 50
 注册: 2007-8-17
 状态:
|
1#
大 中
小 发表于 2007-11-16 08:53 只看该作者
BGP联盟之间邻居关系建立不起来的问题
I、问题描述:
有4路由器参与BGP网络,IGP已经铺通,三台设备是一个联盟,另外一个设备是一个单独外部AS。拓如下原配置如下(只摘录相关部分):
------------------------------------------------------------ ---
Rack01R2(图B)
interface Loopback0
ip address 1.1.2.2 255.255.255.0
ip ospf network point-to-point
!
router bgp 64512
no synchronization
bgp router-id 1.1.2.2
bgp log-neighbor-changes
bgp confederation identifier 1
bgp confederation peers 64513
neighbor 1.1.5.5 remote-as 64512
neighbor 1.1.5.5 update-source Loopback0
neighbor 1.1.6.6 remote-as 64513
neighbor 1.1.6.6 ebgp-multihop 255
neighbor 1.1.6.6 update-source Loopback0
no auto-summary
Rack01R5(图A)
interface Loopback0
ip address 1.1.5.5 255.255.255.0
ip ospf network point-to-point
!
interface Ethernet0
ip address 150.100.2.1 255.255.255.0
!
router bgp 64512
no synchronization
bgp router-id 1.1.5.5
bgp log-neighbor-changes
bgp confederation identifier 1
neighbor 1.1.2.2 remote-as 64512
neighbor 1.1.2.2 update-source Loopback0
neighbor 1.1.2.2 next-hop-self
neighbor 150.100.2.254 remote-as 254
no auto-summary
Rack01R6(图D)
interface Loopback0
ip address 1.1.6.6 255.255.255.0
ip ospf network point-to-point
!
interface Ethernet0/1
ip address 150.100.1.1 255.255.255.0
!
router bgp 64513
no synchronization
bgp router-id 1.1.6.6
bgp log-neighbor-changes
bgp confederation identifier 1
bgp confederation peers 64512
neighbor 1.1.2.2 remote-as 64512
neighbor 1.1.2.2 ebgp-multihop 255
neighbor 1.1.2.2 update-source Loopback0
neighbor 150.100.1.254 remote-as 254
no auto-summary
外部AS配置
interface Ethernet0
ip address 150.100.1.254 255.255.255.0
no ip directed-broadcast
media-type 10BaseT
!
interface Ethernet1
ip address 150.100.2.254 255.255.255.0
no ip directed-broadcast
media-type 10BaseT
router bgp 254
no synchronization
bgp log-neighbor-changes
network 197.68.1.0
network 197.68.4.0
network 197.68.5.0
network 197.68.21.0
network 197.68.22.0
neighbor 150.100.1.1 remote-as 64513
neighbor 150.100.2.1 remote-as 64512
no auto-summary
II、问题分析:
R5和R2可以建立IBGP邻居,R2和R6无法建立EBGP邻居,R5和R6分别和外部AS建立不了邻居。
III、调试过程:
a、检查各借口是否UP,IP地址是否相匹配,运行的BGP进程号是否正确。
Rack01R5#traceroute 150.100.2.254
Type escape sequence to abort.
Tracing the route to 150.100.2.254
1 150.100.2.254 4 msec * 4 msec
Rack01R5#ping 150.100.2.254
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 150.100.2.254, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/8 ms
在R6上debug ip tcp packet 显示如下信息
06:26:47: %BGP-3-NOTIFICATION: received from neighbor 150.100.1.254 2/2 (peer in wrong AS) 2 bytes 0001
显示说PEER错误,我翻阅电子版ROUTING TCP/IP || 在110页有这么一段话
对外部联盟内的对端来讲,这个联盟ID代表整个联盟的AS号。外部对端看不到联盟的内部结构。它们只看到一个AS。
问提找出来了,我在没有做联盟的时候邻居还是好的,一做好后邻居就IDLE了,原来是我AS上指对端邻居的时候没有指他们的联盟ID,而且是指的他们内部自治系统ID,所以邻居就学习不到。
IV、解决办法:
a、把外部AS上对R6和R5的配置改成
BB1__BB2#sh run | b r b
router bgp 254
no synchronization
bgp log-neighbor-changes
network 197.68.1.0
network 197.68.4.0
network 197.68.5.0
network 197.68.21.0
network 197.68.22.0
neighbor 150.100.1.1 remote-as 1
一改过来邻居立刻UP
neighbor 150.100.2.1 remote-as 1 一改过来邻居立刻UP
no auto-summary
V、调试命令汇总:
Show run | b r b
Show ip bgp summary
Debug ip tcp packet
Debug ip bgp events
traceroute
|
2001-2007 Comsenz Inc.
