14.8 OSPF Sham-Link

Hi,

I have almost completed this task, but I have a strange error, which I can't find.

I configuered everything, but my sham link is not coming up.

On R6 I can see why:

########################################

Rack1R6#sh ip route vrf VPN_A 150.1.55.55

% Subnet not in table

########################################

Rack1R6#sh ip route vrf VPN_B 150.1.55.55

Routing entry for 150.1.55.55/32

  Known via "bgp 456", distance 200, metric 0, type internal

  Redistributing via rip

  Advertised by rip metric transparent

  Last update from 150.1.5.5 00:25:49 ago

  Routing Descriptor Blocks:

  * 150.1.5.5 (Default-IP-Routing-Table), from 150.1.4.4, 00:25:49 ago

      Route metric is 0, traffic share count is 1

      AS Hops 0

########################################

Somehow the 150.1.55.55 is in the wrong VRF, and I can't seem to find out why...

Can anyone take a look at my configs; R4, R5 and R6 is further down.

I have not used the exact same naming as the solution, the differences are:

VPN_A rd 1:1

VPN_B rd 1:2

BGP AS 456

########################################

Rack1R4#sh run

Building configuration...

Current configuration : 2651 bytes

!

version 12.4

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

hostname Rack1R4

!

boot-start-marker

boot-end-marker

!

logging message-counter syslog

enable password cisco

!

no aaa new-model

dot11 syslog

ip source-route

!

!

ip vrf VPN_B

 rd 1:2

 route-target export 1:2

 route-target import 1:2

!

!

!

ip cef

no ip domain lookup

no ipv6 cef

!

multilink bundle-name authenticated

!

!

!

!

mpls ldp password required

mpls ldp neighbor 150.1.6.6 password CISCO

mpls ldp neighbor 150.1.5.5 password CISCO

no mpls ldp advertise-labels

mpls ldp advertise-labels for 1

mpls ldp advertise-labels for 10

!

!

!

!         

!

!

!

!

!

!

!

!

!

!

!

!

!

!

voice-card 0

!

!

!

!

!

archive

 log config

  hidekeys

! 

!

!

!

!

!

!

!

!

interface Loopback0

 ip address 150.1.4.4 255.255.255.255

!

interface FastEthernet0/0

 ip vrf forwarding VPN_B

 ip address 204.12.1.4 255.255.255.0

 duplex auto

 speed auto

!

interface FastEthernet0/1

 ip address 155.1.146.4 255.255.255.0

 duplex auto

 speed auto

!         

interface Serial0/1/0

 no ip address

 encapsulation frame-relay

!

interface Serial0/1/0.1 point-to-point

 ip address 155.1.0.4 255.255.255.0

 ip ospf network broadcast

 frame-relay interface-dlci 405   

!

interface Serial0/2/0

 ip address 155.1.45.4 255.255.255.0

 clock rate 2000000

!

router ospf 1

 mpls ldp autoconfig

 router-id 150.1.4.4

 log-adjacency-changes

 network 0.0.0.0 255.255.255.255 area 0

!

router rip

 version 2

 no auto-summary

 !        

 address-family ipv4 vrf VPN_B

  redistribute bgp 456 metric transparent

  network 204.12.1.0

  no auto-summary

 exit-address-family

!

router bgp 456

 no bgp default ipv4-unicast

 bgp log-neighbor-changes

 neighbor 150.1.5.5 remote-as 456

 neighbor 150.1.5.5 update-source Loopback0

 neighbor 150.1.6.6 remote-as 456

 neighbor 150.1.6.6 update-source Loopback0

 !

 address-family vpnv4

  neighbor 150.1.5.5 activate

  neighbor 150.1.5.5 send-community extended

  neighbor 150.1.5.5 route-reflector-client

  neighbor 150.1.6.6 activate

  neighbor 150.1.6.6 send-community extended

  neighbor 150.1.6.6 route-reflector-client

 exit-address-family

 !        

 address-family ipv4 vrf VPN_B

  redistribute rip

  no synchronization

 exit-address-family

!

ip forward-protocol nd

no ip http server

no ip http secure-server

!

!

!

access-list 1 permit 150.1.0.0 0.0.255.255

access-list 10 permit 150.1.0.0 0.0.255.255

!

!

!

!

!

mpls ldp router-id Loopback0 force

!

control-plane

!

!         

!

!

!

!

!

!

!

!

line con 0

 exec-timeout 0 0

 privilege level 15

 logging synchronous

line aux 0

 exec-timeout 0 0

 privilege level 15

line vty 0 4

 password cisco

 login

!

scheduler allocate 20000 1000

end

########################################

Rack1R5#sh run

Building configuration...

Current configuration : 3161 bytes

!

version 12.4

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

hostname Rack1R5

!

boot-start-marker

boot-end-marker

!

logging message-counter syslog

enable password cisco

!

no aaa new-model

!

dot11 syslog

ip source-route

!

!

ip cef

ip vrf VPN_A

 rd 1:1

 export map VPN_A_EXPORT

 route-target export 1:1

 route-target import 1:1

 route-target import 1:66

!

ip vrf VPN_B

 rd 1:2

 route-target export 1:2

 route-target import 1:2

!

!

!

no ip domain lookup

no ipv6 cef

!

multilink bundle-name authenticated

!

!

!

!

mpls ldp password required

mpls ldp neighbor 150.1.4.4 password CISCO

no mpls ldp advertise-labels

mpls ldp advertise-labels for 1

mpls ldp advertise-labels for 10

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

voice-card 0

!

!

!

!

!

archive

 log config

  hidekeys

! 

!

!

!

!

!

!

!

!

interface Loopback0

 ip address 150.1.5.5 255.255.255.255

!

interface Loopback101

 ip vrf forwarding VPN_A

 ip address 172.16.5.5 255.255.255.0

!

interface Loopback200

 ip vrf forwarding VPN_A

 ip address 150.1.55.55 255.255.255.255

!

interface FastEthernet0/0

 ip vrf forwarding VPN_A

 ip address 155.1.58.5 255.255.255.0

 duplex auto

 speed auto

!

interface FastEthernet0/1

 ip vrf forwarding VPN_B

 ip address 155.1.5.5 255.255.255.0

 duplex auto

 speed auto

!

interface Serial0/0/0

 ip address 155.1.0.5 255.255.255.0

 encapsulation frame-relay

 ip ospf network broadcast

 mpls ip

 frame-relay map ip 155.1.0.1 501 broadcast

 frame-relay map ip 155.1.0.2 502 broadcast

 frame-relay map ip 155.1.0.3 503 broadcast

 frame-relay map ip 155.1.0.4 504 broadcast

!

interface Serial0/1/0

 ip address 155.1.45.5 255.255.255.0

 mpls ip

!

router ospf 100 vrf VPN_A

 log-adjacency-changes

 area 1 sham-link 150.1.55.55 150.1.66.66

 redistribute bgp 456 subnets

 network 155.1.58.5 0.0.0.0 area 1

!

router ospf 1

 router-id 150.1.5.5

 log-adjacency-changes

 network 0.0.0.0 255.255.255.255 area 0

!

router bgp 456

 no bgp default ipv4-unicast

 bgp log-neighbor-changes

 neighbor 150.1.4.4 remote-as 456

 neighbor 150.1.4.4 update-source Loopback0

 !

 address-family vpnv4

  neighbor 150.1.4.4 activate

  neighbor 150.1.4.4 send-community extended

 exit-address-family

 !

 address-family ipv4 vrf VPN_B

  redistribute connected

  redistribute static

  no synchronization

 exit-address-family

 !

 address-family ipv4 vrf VPN_A

  redistribute connected

  redistribute static

  redistribute ospf 100 vrf VPN_A

  no synchronization

  network 150.1.55.55 mask 255.255.255.255

 exit-address-family

!

ip forward-protocol nd

no ip http server

no ip http secure-server

!

!

!

!

ip prefix-list LO101 seq 5 permit 172.16.5.0/24

access-list 1 permit 150.1.0.0 0.0.255.255

access-list 10 permit 150.1.0.0 0.0.255.255

!

!

!

!

route-map VPN_A_EXPORT permit 10

 match ip address LO101

 set extcommunity rt  1:55

!

route-map VPN_A_EXPORT permit 20

 set extcommunity rt  1:1

!

!

mpls ldp router-id Loopback0 force

!

control-plane

!

!

!

!

!

!

!

!

!

!

line con 0

 exec-timeout 0 0

 privilege level 15

 logging synchronous

line aux 0

 exec-timeout 0 0

 privilege level 15

line vty 0 4

 password cisco

 login

!

scheduler allocate 20000 1000

end  

########################################

Rack1R6#sh run 

Building configuration...

Current configuration : 3630 bytes

!

version 12.4

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

hostname Rack1R6

!

boot-start-marker

boot-end-marker

!

logging message-counter syslog

enable password cisco

!

no aaa new-model

!

dot11 syslog

ip source-route

!

!

ip cef

ip vrf VPN_A

 rd 1:1

 export map NO192R5

 route-target export 1:1

 route-target import 1:1

!

ip vrf VPN_B

 rd 1:2

 export map VPN_B_EXPORT

 route-target export 1:2

 route-target import 1:2

 route-target import 1:55

!

!

!

no ip domain lookup

no ipv6 cef

!

multilink bundle-name authenticated

!

!

!

!

mpls ldp password required

mpls ldp neighbor 150.1.4.4 password CISCO

no mpls ldp advertise-labels

mpls ldp advertise-labels for 1

mpls ldp advertise-labels for 10

mpls label protocol ldp

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!         

!

voice-card 0

!

!

!

!

!

archive

 log config

  hidekeys

! 

!

!

!

!

!

!

!

!

interface Loopback0

 ip address 150.1.6.6 255.255.255.255

!

interface Loopback102

 ip vrf forwarding VPN_B

 ip address 192.168.6.6 255.255.255.0

!

interface Loopback200

 ip vrf forwarding VPN_A

 ip address 150.1.66.66 255.255.255.255

!

interface FastEthernet0/0

 no ip address

 duplex auto

 speed auto

!

interface FastEthernet0/0.67

 encapsulation dot1Q 67

 ip vrf forwarding VPN_A

 ip address 155.1.67.6 255.255.255.0

!

interface FastEthernet0/0.76

 encapsulation dot1Q 76

 ip vrf forwarding VPN_B

 ip address 155.1.76.6 255.255.255.0

!

interface FastEthernet0/0.146

 encapsulation dot1Q 146

 ip address 155.1.146.6 255.255.255.0

 mpls ldp discovery transport-address interface

 mpls ip

!

interface FastEthernet0/1

 no ip address

 shutdown

 duplex auto

 speed auto

!

interface Serial0/0/0

 ip address 54.1.1.6 255.255.255.0

 encapsulation frame-relay

 frame-relay map ip 54.1.1.254 101 broadcast

 no frame-relay inverse-arp

!

router ospf 100 vrf VPN_A

 log-adjacency-changes

 area 1 sham-link 150.1.66.66 150.1.55.55

 summary-address 172.16.0.0 255.255.0.0

 redistribute bgp 456 subnets

 network 155.1.67.6 0.0.0.0 area 1

!

router ospf 1

 router-id 150.1.6.6

 log-adjacency-changes

 network 0.0.0.0 255.255.255.255 area 0

!

router rip

 version 2

 no auto-summary

 !

 address-family ipv4 vrf VPN_B

  redistribute bgp 456 metric transparent

  network 155.1.0.0

  no auto-summary

 exit-address-family

!

router bgp 456

 no synchronization

 bgp log-neighbor-changes

 neighbor 150.1.4.4 remote-as 456

 neighbor 150.1.4.4 update-source Loopback0

 no auto-summary

 !        

 address-family vpnv4

  neighbor 150.1.4.4 activate

  neighbor 150.1.4.4 send-community extended

 exit-address-family

 !

 address-family ipv4 vrf VPN_B

  redistribute connected

  redistribute static

  redistribute rip

  no synchronization

 exit-address-family

 !

 address-family ipv4 vrf VPN_A

  redistribute connected

  redistribute static

  redistribute ospf 100 vrf VPN_A

  no synchronization

  network 150.1.66.66 mask 255.255.255.255

 exit-address-family

!

ip forward-protocol nd

ip route vrf VPN_A 192.168.7.0 255.255.255.0 FastEthernet0/0.76 155.1.76.7

no ip http server

no ip http secure-server

!

!

!

!

ip prefix-list LO102 seq 5 permit 192.168.6.0/24

access-list 1 permit 150.1.0.0 0.0.255.255

access-list 10 permit 150.1.0.0 0.0.255.255

!

!

!

!

route-map VPN_B_EXPORT permit 10

 match ip address prefix-list LO102

 set extcommunity rt  1:66

!

route-map VPN_B_EXPORT permit 20

 set extcommunity rt  1:2

!

!

mpls ldp router-id Loopback0 force

!

control-plane

!

!

!

!

!

!

!

!

!

!

line con 0

 exec-timeout 0 0

 privilege level 15

 logging synchronous

line aux 0

 exec-timeout 0 0

 privilege level 15

line vty 0 4

 password cisco

 login

!

scheduler allocate 20000 1000

end      

########################################