Ajspr 11 A LGD
Ajspr 11 A LGD
Ajspr 11 A LGD
Routing
11.a
Juniper Networks reserves the right to change, modify, transfer, or otherwise revise this publication without notice.
YEAR 2000 NOTICE
Juniper Networks hardware and software products do not suffer from Year 2000 problems and hence are Year 2000 compliant. The Junos operating system has
no known time-related limitations through the year 2038. However, the NTP application is known to have some difficulty in the year 2036.
SOFTWARE LICENSE
The terms and conditions for using Juniper Networks software are described in the software license provided with the software, or to the extent applicable, in an
agreement executed between you and Juniper Networks, or Juniper Networks agent. By using Juniper Networks software, you indicate that you understand and
agree to be bound by its license terms and conditions. Generally speaking, the software license restricts the manner in which you are permitted to use the Juniper
Networks software, may contain prohibitions against certain uses, and may state conditions under which the license is automatically terminated. You should
consult the software license for further details.
Contents
Lab 1: OSPF Multiarea Networks (Detailed) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-1
Part 1: Load Reset Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-2
Part 2: Creating the Network . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-8
Part 3: Configuring the OSPF LInk Costs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-13
Part 4: Configuring Overload . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-18
Part 5: Performing Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-21
Lab 8: BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) . . . . . . . . . 8-1
Part 1: Repairing Unusable Routes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8-2
Part 2: Modifying the Origin Attribute . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8-8
Part 3: Configuring the MED Attribute . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8-14
Part 4: Modifying the AS Path Attribute . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8-20
iv • Contents www.juniper.net
Course Overview
This four-day course is designed to provide students with detailed coverage of OSPF, IS-IS, BGP, and
routing policy. Through demonstrations and hands-on labs, students will gain experience in
configuring and monitoring the Junos operating system and in monitoring device and protocol
operations. This course is based on the Junos OS Release 11.4R1.14.
Objectives
After successfully completing this course, you should be able to:
• Describe the various OSPF link-state advertisement (LSA) types.
• Explain the flooding of LSAs in an OSPF network.
• Describe the shortest-path-first (SPF) algorithm.
• List key differences between OSPFv2 and OSPFv3.
• Describe OSPF area types and operations.
• Configure various OSPF area types.
• Summarize and restrict routes.
• Identify some scenarios in a service provider network that can be solved using routing
policy or specific configuration options.
• Use routing policy and specific configuration options to implement solutions for
various scenarios.
• Explain the concepts and operation of IS-IS.
• Describe various IS-IS link-state protocol data unit (PDU) types.
• List IS-IS adjacency rules and troubleshoot common adjacency issues.
• Configure and monitor IS-IS.
• Display and interpret the link-state database (LSDB).
• Perform advanced IS-IS configuration options.
• Implement IS-IS routing policy.
• Explain the default operation in multiarea IS-IS.
• Describe IS-IS address summarization methods.
• Configure and monitor a multiarea IS-IS network.
• Describe basic BGP operation.
• List common BGP attributes.
• Explain the route selection process for BGP.
• Describe how to alter the route selection process.
• Configure some advanced options for BGP peers.
• Describe various BGP attributes in detail and explain the operation of those attributes.
• Manipulate BGP attributes using routing policy.
• Explain the causes for route instability.
• Describe the effect of damping on BGP routing.
• Explain the default behavior of damping on links.
• Describe the operation of BGP route reflection.
• Configure a route reflector.
Day 1
Chapter 1: Course Introduction
Chapter 2: OSPF
Lab 1: OSPF Multiarea Networks
Chapter 3: OSPF Areas
Lab 2: Configuring and Monitoring OSPF Areas and Route Summarization
Chapter 4: OSPF Case Studies and Solutions
Lab 3: Advanced OSPF Options and Policy
Day 2
Chapter 5: IS-IS
Lab 4: IS-IS Configuration and Monitoring
Chapter 6: Advanced IS-IS Operations and Configuration Options
Lab 5: Advanced IS-IS Configuration Options and Routing Policy
Chapter 7: Multilevel IS-IS Networks
Lab 6: Configuring a Multilevel IS-IS Network
Day 3
Chapter 8: BGP
Lab 7: BGP
Chapter 9: BGP Attributes and Policy—Part 1
Lab 8: BGP Attributes: Next-Hop, Origin, MED, and AS Path
Day 4
Chapter 10: BGP Attributes and Policy—Part 2
Lab 9: BGP Attributes: Local Preference and Communities
Chapter 11: Route Reflection and Confederations
Lab 10: Scaling BGP (Detailed)
Chapter 12: BGP Route Damping
Lab 11: BGP Route Damping (Detailed)
Franklin Gothic Normal text. Most of what you read in the Lab Guide
and Student Guide.
CLI Input Text that you must enter. lab@San_Jose> show route
GUI Input Select File > Save, and type
config.ini in the Filename field.
CLI Undefined Text where the variable’s value is Type set policy policy-name.
the user’s discretion or text where
ping 10.0.x.y
the variable’s value as shown in
GUI Undefined the lab guide might differ from the Select File > Save, and type
value the user must input filename in the Filename field.
according to the lab topology.
Overview
In this lab, you will use the lab diagram titled “Lab 1: OSPF Multiarea Networks” to
establish a multiarea OSPF routing domain. You will explore the operation of the network
focusing on show commands and the link-state database (LSDB). You will then explore
configuration options, such as reference bandwidth, overload, and authentication.
The lab is available in two formats: a high-level format designed to make you think through
each step and a detailed format that offers step-by-step instructions complete with
sample output from most commands.
By completing this lab, you will perform the following tasks:
• Verify the router’s existing configuration.
• Verify the router’s interface status.
• Build a multiarea OSPF network.
• Change OSPF costs on links.
• Configure a router for overload.
• Perform authentication on OSPF packets.
In this lab part, you verify the initial configuration of the routers. You then verify that
the interfaces are operational. After verifying the interfaces, you attempt to telnet to
your neighboring routers.
Note
The instructor will tell you the nature of your
access and will provide you with the
necessary details to access your assigned
device.
Note
The lab topology requires you to display
information in the different virtual routing
instances. When referencing the routing
instance, the commands include the
routing instance name, R3-Y, where Y is
the user number (1 or 2). Refer to the lab
diagram for the correct instance and user
number.
When performing network commands such
as ping or traceroute within the
routing instance, the
routing-instance R3-Y switch must
be used to consult the appropriate virtual
instance. When performing show
commands, the instance R3-Y or
table R3-Y switch must be used to
display the appropriate adjacencies or
routing tables.
Step 1.1
Ensure that you know to which student device you have been assigned. Check with
your instructor if you are not certain. Consult the management network diagram to
determine the management address of your student device.
Step 1.2
Access the CLI on your student device using either the console, Telnet, or SSH as
directed by your instructor. Refer to the management network diagram for the IP
address associated with your student device. The following example demonstrates a
simple Telnet session with the Secure CRT program as a basis:
Step 1.3
Log in to the router with the username lab using a password of lab123. Note that
both the name and password are case-sensitive.
mxA-1 (ttyu0)
login: lab
Password:
[edit]
lab@mxA-1# load override ajspr/reset.config
load complete
[edit]
lab@mxA-1# commit and-quit
commit complete
Exiting configuration mode
lab@mxA-1>
Step 1.5
Issue the show configuration command. Use the lab diagram to verify that
your router has the correct interface configuration with the appropriate VLANs. Verify
that there are four 20.20/24 static routes, a routing-instance, and a policy
statement. Notify your instructor of any problems with your device configuration.
lab@mxA-1> show configuration
## Last commit: 2011-12-28 18:31:22 UTC by lab
version 11.4R1.14;
system {
lab@mxA-1>
Step 1.6
Variable references are used throughout this lab to distinguish various parts of CLI
input.
1. Variable R will be 1 or 2 but will indicate a value from your remote team’s
devices. Just remember “R for Remote.”
2. Variable V indicates the last number of the VLAN value on the links
connecting to the P1, P2 and P3 routers. On the mxX-1 side, the value will
be 1, 3 or 5. On the mxX-2 device, the value will be 2, 4 or 6. Just
remember “V for VLAN.”
3. Variable X indicates the pod letter: A, B, C or D.
4. Variable Y will be a 1 or 2 depending on which student device you have
been assigned within your pod. Just remember “Y for Yours.”
5. Variable Z will be either 1, 2, 3 or 4 depending upon which pod you have
been assigned (A = 1, B = 2, C = 3 & D = 4).
Use the ping 172.22.12V.2 count 5 and ping 10.0.Y.2 count 5
commands to verify that you can ping the physical interfaces on each neighboring
router.
lab@mxA-1> ping 172.22.12V.2 count 5
PING 172.22.121.2 (172.22.121.2): 56 data bytes
64 bytes from 172.22.121.2: icmp_seq=0 ttl=64 time=0.598 ms
64 bytes from 172.22.121.2: icmp_seq=1 ttl=64 time=0.527 ms
64 bytes from 172.22.121.2: icmp_seq=2 ttl=64 time=0.528 ms
64 bytes from 172.22.121.2: icmp_seq=3 ttl=64 time=0.512 ms
64 bytes from 172.22.121.2: icmp_seq=4 ttl=64 time=0.519 ms
lab@mxA-1>
Step 1.7
Try to telnet between the student device and the routing-instance router using the
telnet 10.0.Y.2 command. The username is lab and the password is
lab123. Once you have verified a successful telnet connection, log out using the
exit command.
lab@mxA-1> telnet 10.0.Y.2
Trying 10.0.1.2...
Connected to 10.0.1.2.
Escape character is '^]'.
mxA-1 (ttyp0)
login: lab
Password:
Step 1.8
To aid in completing the labs in a timely manner, some routing information has been
preconfigured on your router. Issue the show route protocol static
table inet.0 command to ensure that the correct routing information is
present.
lab@mxA-1> show route protocol static table inet.0
lab@mxA-1>
In this part of the lab, you configure and monitor a multiarea OSPF network. First,
you configure the interfaces participating in OSPF for your assigned device. You then
configure your device to participate in a multiarea OSPF network and verify
operations using command-line interface (CLI) operational mode commands.
Step 2.1
Refer to the network diagram in your lab topology handout. Write down the
interfaces that will run OSPF and to which area each is attached.
Interfaces and OSPF areas:
Step 2.2
Enter configuration mode and navigate to the [edit protocols ospf]
hierarchy. Configure your routers’ interfaces and unit numbers to be in the correct
OSPF area. Do not forget the loopback interfaces. Commit your configuration when
completed.
lab@mxA-1> configure
Entering configuration mode
[edit]
lab@mxA-1# edit protocols ospf
Note
Remember that the logical interface—and
not the physical interface—will be running
the protocol. All interfaces will appear in
the configuration with a logical unit
attached. If the logical unit is omitted when
entering the command, such as interface
ge-1/0/0, then a logical unit number of 0
will be automatically attached, and the
configuration will contain interface
ge-1/0/0.0. This attachment might be an
issue on a multi-unit interface.
Step 2.3
Verify the OSPF adjacencies by issuing the run show ospf neighbor
command.
[edit routing-instances R3-1 protocols ospf]
lab@mxA-1> run show ospf neighbor
Address Interface State ID Pri Dead
172.22.121.2 ge-1/0/0.1111 Full 172.31.100.1 128 36
10.0.1.2 ge-1/0/4.0 Full 172.16.1.2 128 36
Step 2.4
Issue the run show route command to look at the routing table of the student
device.
[edit routing-instances R3-1 protocols ospf]
lab@mxA-1# run show route
Step 2.5
Navigate to the [edit protocols ospf] hierarchy on the student device. A
policy statement labeled static-to-ospf was defined in the configuration file.
Apply the policy as an export policy to export the static routes into OSPF and commit
your configuration.
[edit routing-instances R3-1 protocols ospf]
lab@mxA-1# top edit protocols ospf
STOP Tell your instructor that you have completed this section. Please do not
rush ahead because you will impact the lab results of other students.
Please use any available time to practice show commands, but do not make any
configuration changes.
Step 3.2
At this point, we will better represent the link bandwidths in the network. Using the
reference-bandwidth command, alter the metric calculation such that the
bandwidth of a 10-Gigabit Ethernet link becomes the basis for the formula. Commit
your configuration when completed.
[edit protocols ospf]
lab@mxA-1# set reference-bandwidth 10g
Step 3.4
Change the metric on your Area 0 loopback interface to be 10000 and commit your
configuration.
Note
If no metric values have changed on your
router, then STOP until some networks have
changed. If, however, some networks in
your routing table do have increased
metrics, then proceed to the next step.
Step 3.6
Alter the metrics in OSPF Area Y0. The student device router should use a metric of
5000, and the routing-instance router should use a metric of 2500. Commit your
configuration when completed.
[edit protocols ospf]
lab@mxA-1# set area Y0 interface ge-1/0/4.0 metric 5000
In this lab part, you configure the routing-instance router to be in overload mode.
Step 4.1
Enter the run show route table R3-Y.inet.0 to examine the routing table
for the routing-instance on your student device and look at the metric for the transit
links. You should also see the 20.20/16 static routes.
[edit routing-instances R3-1 protocols ospf area 0.0.0.10]
lab@mxA-1# run show route table R3-Y.inet.0
In this lab part, you perform authentication for the OSPF area between the student
device and routing-instance router.
Step 5.1
Navigate to the [edit protocols ospf area Y0] hierarchy. First, issue a
run clear ospf statistics command. Then, configure your student device
router to support an authentication key of juniper using the Message Digest 5
(MD5) algorithm. Use a key-id of 10 and commit your configuration when completed.
[edit routing-instances R3-1 protocols ospf]
lab@mxA-1# top edit protocols ospf area Y0
Receive errors:
2 area mismatches
lab@mxA-1>
Step 5.5
Issue the show ospf neighbor command to verify that the neighbor
adjacencies have returned to the Full state.
lab@mxA-1> show ospf neighbor
Address Interface State ID Pri Dead
172.22.121.2 ge-1/0/0.1111 Full 172.31.100.1 128 34
10.0.1.2 ge-1/0/4.0 Full 172.16.1.2 128 34
Step 5.6
Log out of your assigned device using the exit command.
lab@mxA-1> exit
Overview
In this lab, you will use the lab diagram titled “Lab 2: Configuring and Monitoring OSPF
Areas and Route Summarization” to establish a multiarea OSPF routing domain. You will
configure and monitor OSPF areas and route summarization to convert some of the areas
in the OSPF routing domain into OSPF stub areas. You will then convert them into stub
no-summaries areas. Finally, you will convert the areas into OSPF NSSA areas, as well as
NSSA with no summaries areas.
By completing this lab, you will perform the following tasks:
• Create OSPF stub areas.
• Create OSPF stub no-summaries areas.
• Create an OSPF not-so-stubby area.
• Create an OSPF not-so-stubby no-summaries area.
www.juniper.net Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) • Lab 2–1
11.a.11.4R1.14
Advanced Junos Service Provider Routing
Note
The lab topology requires you to display
information in the different virtual routing
instances. When referencing the routing
instance, the commands include the
routing instance name, R3-Y, where Y is
the user number (1 or 2). Refer to the lab
diagram for the correct instance and user
number.
When performing network commands such
as ping or traceroute within the
routing instance, the
routing-instance R3-Y switch must
be used to consult the appropriate virtual
instance. When performing show
commands, the instance R3-Y or
table R3-Y switch must be used to
display the appropriate adjacencies or
routing tables.
In this lab part, you convert the each of the non-backbone areas into stub areas. You
then look at the link-state database (LSDB) of the routing-instance router to verify
that external routing information is no longer present.
Step 1.1
Access the CLI on your student device using either the console, Telnet, or SSH as
directed by your instructor. Refer to the management network diagram for the IP
address associated with your student device. The following example demonstrates a
simple Telnet session with the Secure CRT program as a basis:
Step 1.2
Log in to the router with the username lab using a password of lab123. Note that
both the name and password are case-sensitive.
Lab 2–2 • Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
mxA-1 (ttyu0)
login: lab
Password:
[edit]
lab@mxA-1# load override ajspr/lab2-start.config
load complete
[edit]
lab@mxA-1# commit
commit complete
[edit]
lab@mxA-1#
Step 1.4
Verify you have two OSPF adjacencies using the run show ospf neighbor
command.
[edit]
lab@mxA-1# run show ospf neighbor
Address Interface State ID Pri Dead
172.22.121.2 ge-1/0/0.1111 Full 172.31.100.1 128 32
10.0.1.2 ge-1/0/4.0 Full 172.16.1.2 128 36
Step 1.5
Variable references are used throughout this lab to distinguish various parts of
command-line interface (CLI) input.
1. Variable R will be 1 or 2 but will indicate a value from your remote team’s
devices. Just remember “R for Remote.”
2. Variable V indicates the last number of the VLAN value on the links
connecting to the P1, P2 and P3 routers. On the mxX-1 side, the value will
be 1, 3 or 5. On the mxX-2 device, the value will be 2, 4 or 6. Just
remember “V for VLAN.”
www.juniper.net Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) • Lab 2–3
Advanced Junos Service Provider Routing
3. Variable X indicates the pod letter: A, B, C, or D.
4. Variable Y will be a 1 or 2 depending on which student device you have
been assigned within your pod. Just remember “Y for Yours.”
5. Variable Z will be either 1, 2, 3, or 4 depending upon which pod you have
been assigned (A = 1, B = 2, C = 3, and D = 4).
Configure the non-backbone area as a stub area for the main instance and R3-Y
routing instance. Commit your configuration when completed.
[edit]
lab@mxA-1# edit protocols ospf
Step 1.7
Issue the run show route 172.16/16 command. Attempt to ping the loopback
address of the other team’s routing-instance router in your pod using the run ping
172.16.R.2 count 5 command. As a reminder, the value of R will come from
the remote team’s R3-R router.
[edit routing-instances R3-1 protocols ospf]
lab@mxA-1# run show route 172.16/16
www.juniper.net Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) • Lab 2–5
Advanced Junos Service Provider Routing
64 bytes from 172.16.2.2: icmp_seq=0 ttl=62 time=0.532 ms
64 bytes from 172.16.2.2: icmp_seq=1 ttl=62 time=0.561 ms
64 bytes from 172.16.2.2: icmp_seq=2 ttl=62 time=0.470 ms
64 bytes from 172.16.2.2: icmp_seq=3 ttl=62 time=0.535 ms
64 bytes from 172.16.2.2: icmp_seq=4 ttl=62 time=0.459 ms
Step 1.8
Issue the run show ospf database command and answer the following
question.
[edit routing-instances R3-1 protocols ospf]
lab@mxA-1# run show ospf database
Lab 2–6 • Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Extern *20.20.1.0 172.16.1.1 0x80000001 517 0x22 0x606a 36
Extern *20.20.2.0 172.16.1.1 0x80000001 517 0x22 0x5574 36
Extern *20.20.3.0 172.16.1.1 0x80000001 517 0x22 0x4a7e 36
Extern 20.20.4.0 172.16.2.1 0x80000002 68 0x22 0x368f 36
Extern 20.20.5.0 172.16.2.1 0x80000001 510 0x22 0x2d98 36
Extern 20.20.6.0 172.16.2.1 0x80000001 510 0x22 0x22a2 36
Extern 20.20.7.0 172.16.2.1 0x80000001 510 0x22 0x17ac 36
STOP
Tell your instructor that you have completed this section. Please do not rush ahead
because it will impact the lab results of other students.
Please use any available time to practice show commands, but do not make any
configuration changes.
In this lab part, you convert the stub area to a stub no-summaries area.
Step 2.1
Convert the stub area to a stub no-summaries area with the set area Y0 stub
no-summaries command. Commit your configuration when completed.
[edit routing-instances R3-1 protocols ospf]
lab@mxA-1# top edit protocols ospf
www.juniper.net Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) • Lab 2–7
Advanced Junos Service Provider Routing
Question: On which routers must you issue the
command?
Step 2.2
Issue run show ospf neighbor and run show route commands and
answer the following questions.
[edit protocols ospf]
lab@mxA-1# run show ospf neighbor
Address Interface State ID Pri Dead
172.22.121.2 ge-1/0/0.1111 Full 172.31.100.1 128 35
10.0.1.2 ge-1/0/4.0 Full 172.16.1.2 128 39
Lab 2–8 • Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
> to 172.22.121.2 via ge-1/0/0.1111
172.16.2.2/32 *[OSPF/10] 00:01:15, metric 5011
> to 172.22.121.2 via ge-1/0/0.1111
172.22.121.0/24 *[Direct/0] 00:35:07
> via ge-1/0/0.1111
172.22.121.1/32 *[Local/0] 00:35:07
Local via ge-1/0/0.1111
172.22.122.0/24 *[OSPF/10] 00:19:21, metric 11
> to 172.22.121.2 via ge-1/0/0.1111
172.31.100.1/32 *[OSPF/10] 00:19:21, metric 10
> to 172.22.121.2 via ge-1/0/0.1111
224.0.0.5/32 *[OSPF/10] 00:35:07, metric 1
MultiRecv
Step 2.3
Attempt to ping the loopback address of the remote team’s default router .
[edit protocols ospf]
lab@mxA-1# run ping 172.16.R.1 count 5
PING 172.16.2.1 (172.16.2.1): 56 data bytes
64 bytes from 172.16.2.1: icmp_seq=0 ttl=63 time=0.583 ms
64 bytes from 172.16.2.1: icmp_seq=1 ttl=63 time=0.476 ms
64 bytes from 172.16.2.1: icmp_seq=2 ttl=63 time=0.459 ms
64 bytes from 172.16.2.1: icmp_seq=3 ttl=63 time=0.475 ms
www.juniper.net Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) • Lab 2–9
Advanced Junos Service Provider Routing
64 bytes from 172.16.2.1: icmp_seq=4 ttl=63 time=0.478 ms
Step 2.4
Issue a run show ospf database command and answer the following
question.
[edit protocols ospf]
lab@mxA-1# run show ospf database
Note
At this point, you might have some
connectivity issues reaching routers in
other OSPF areas in the network because
you removed so much information from the
routing table. To restore connectivity to the
rest of the network, OSPF stub and stub
no-summaries areas use a default route
generated by the ABR. Within the Junos OS,
this default route is not automatically
generated and must be explicitly
configured.
Step 2.5
Restore connectivity in the network by allowing the ABR to generate a default route
into the stub areas. Issue the set area Y0 stub default-metric 10
command and commit your configuration.
[edit protocols ospf]
lab@mxA-1# set area Y0 stub default-metric 10
STOP
Tell your instructor that you have completed this section. Please do not rush ahead
because it will impact the lab results of other students.
Please use any available time to practice show commands, but do not make any
configuration changes.
In this lab part, you convert the OSPF stub areas to NSSA areas.
Step 3.1
Configure the non-backbone area as an NSSA area for the main instance and R3-Y
routing instance. Commit the configuration when completed.
[edit protocols ospf]
lab@mxA-1# set area Y0 nssa
Lab 2–12 • Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
commit complete
Note
It might take a minute for the R3-Y
adjacency to go back to Full.
www.juniper.net Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) • Lab 2–13
Advanced Junos Service Provider Routing
> to 10.0.1.2 via ge-1/0/4.0
172.16.2.1/32 *[OSPF/10] 00:31:47, metric 10011
> to 172.22.121.2 via ge-1/0/0.1111
172.16.2.2/32 *[OSPF/10] 00:04:14, metric 5011
> to 172.22.121.2 via ge-1/0/0.1111
172.22.121.0/24 *[Direct/0] 00:47:42
> via ge-1/0/0.1111
172.22.121.1/32 *[Local/0] 00:47:42
Local via ge-1/0/0.1111
172.22.122.0/24 *[OSPF/10] 00:31:56, metric 11
> to 172.22.121.2 via ge-1/0/0.1111
172.31.100.1/32 *[OSPF/10] 00:31:56, metric 10
> to 172.22.121.2 via ge-1/0/0.1111
224.0.0.5/32 *[OSPF/10] 00:47:42, metric 1
MultiRecv
Lab 2–14 • Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Question: Are all the OSPF neighbors fully adjacent?
STOP
Tell your instructor that you have completed this section. Please do not rush ahead
because it will impact the lab results of other students.
Please use any available time to practice show commands, but do not make any
configuration changes.
In this lab part, you change each of the NSSAs to be a no-summaries area.
Step 4.1
First, issue a run show ospf database command to view the LSDB content.
Second, issue a run show ospf database | count command. Make note of
this value so you have a point of reference after configuring the area with the
no-summaries command.
[edit routing-instances R3-1 protocols ospf]
lab@mxA-1# run show ospf database
www.juniper.net Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) • Lab 2–15
Advanced Junos Service Provider Routing
OSPF database, Area 0.0.0.10
Type ID Adv Rtr Seq Age Opt Cksum Len
Router *172.16.1.1 172.16.1.1 0x80000004 584 0x20 0x8b72 36
Router 172.16.1.2 172.16.1.2 0x80000004 585 0x20 0x6564 48
Network 10.0.1.2 172.16.1.2 0x80000002 585 0x20 0x12dd 32
Summary *10.0.2.0 172.16.1.1 0x80000001 624 0x20 0xdeee 28
Summary *172.16.1.1 172.16.1.1 0x80000001 624 0x20 0x6e1c 28
Summary *172.16.2.1 172.16.1.1 0x80000001 624 0x20 0xd1ac 28
Summary *172.16.2.2 172.16.1.1 0x80000001 565 0x20 0xc751 28
Summary *172.22.121.0 172.16.1.1 0x80000001 624 0x20 0x66d3 28
Summary *172.22.122.0 172.16.1.1 0x80000001 624 0x20 0x65d2 28
Summary *172.31.100.1 172.16.1.1 0x80000001 624 0x20 0xd76d 28
NSSA *20.20.0.0 172.16.1.1 0x80000001 624 0x20 0x6d5e 36
NSSA *20.20.1.0 172.16.1.1 0x80000001 624 0x20 0x6268 36
NSSA *20.20.2.0 172.16.1.1 0x80000001 624 0x20 0x5772 36
NSSA *20.20.3.0 172.16.1.1 0x80000001 624 0x20 0x4c7c 36
OSPF AS SCOPE link state database
Type ID Adv Rtr Seq Age Opt Cksum Len
Extern *20.20.0.0 172.16.1.1 0x80000003 704 0x22 0x6762 36
Extern *20.20.1.0 172.16.1.1 0x80000003 386 0x22 0x5c6c 36
Extern *20.20.2.0 172.16.1.1 0x80000003 233 0x22 0x5176 36
Extern *20.20.3.0 172.16.1.1 0x80000003 80 0x22 0x4680 36
Extern 20.20.4.0 172.16.2.1 0x80000003 707 0x22 0x3490 36
Extern 20.20.5.0 172.16.2.1 0x80000003 389 0x22 0x299a 36
Extern 20.20.6.0 172.16.2.1 0x80000003 236 0x22 0x1ea4 36
Extern 20.20.7.0 172.16.2.1 0x80000003 83 0x22 0x13ae 36
lab@mxA-1>
Step 4.3
Issue a show ospf database | count command and make note of the value.
Next, issue a show ospf database command and answer the following
questions.
Lab 2–16 • Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Note
Due to route churn, you might see the
count fluctuate some before settling down.
lab@mxA-1>
www.juniper.net Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) • Lab 2–17
Advanced Junos Service Provider Routing
Question: Which LSAs were dropped from the LSDB
after making the change?
Step 4.4
Log out of your assigned device using the exit command.
lab@mxA-1> exit
Lab 2–18 • Configuring and Monitoring OSPF Areas and Route Summarization (Detailed) www.juniper.net
Lab 3
Advanced OSPF Options and Routing Policy (Detailed)
Overview
In this lab, you will use the lab diagram titled “Lab 3: Advanced OSPF Options and Routing
Policy” to establish a multiarea OSPF routing domain. This lab will require the
configuration of a virtual tunnel as backup to the backbone connection and a multiarea
adjacency as outlined in RFC 5185. The final part of this lab will require routing policy to
redistribute and advertise routes being received from a RIP network into OSPF external
link-state advertisements (LSAs).
By completing this lab, you will perform the following tasks:
• Load the default configuration.
• Establish multiple OSPF adjacencies.
• Configure and verify a virtual tunnel.
• Configure and verify a OSPF multiarea adjacency.
• Establish a RIP neighbor peer session.
• Write a routing policy to advertise a default route into RIP.
• Configure prefix-limits in OSPF to prevent excessive external routes.
• Write a routing policy to advertise a RIP summary route into OSPF.
• Write an OSPF import policy to prevent suboptimal routing.
www.juniper.net Advanced OSPF Options and Routing Policy (Detailed) • Lab 3–1
11.a.11.4R1.14
Advanced Junos Service Provider Routing
Note
The lab topology requires you to display
information in the different virtual routing
instances. When referencing the routing
instance, the commands include the
routing instance name, R3-Y, where Y is
the user number (1 or 2). Refer to the lab
diagram for the correct instance and user
number.
When performing network commands such
as ping or traceroute within the
routing instance, the
routing-instance R3-Y switch must
be used to consult the appropriate virtual
instance. When performing show
commands, the instance R3-Y or
table R3-Y switch must be used to
display the appropriate adjacencies or
routing tables.
In this lab part, you load the reset configuration and establish the OSPF adjacencies.
The virtual router device (vr-device) provides connectivity among all three OSPF
areas—your student device and your partner’s.
Step 1.1
Access the CLI on your student device using either the console, Telnet, or SSH as
directed by your instructor. Refer to the management network diagram for the IP
address associated with your student device. The following example demonstrates a
simple Telnet session with the Secure CRT program as a basis:
Step 1.2
Log in to the router with the username lab using a password of lab123. Note that
both the name and password are case-sensitive.
Lab 3–2 • Advanced OSPF Options and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
mxA-1 (ttyu0)
login: lab
Password:
[edit]
lab@mxA-1#
[edit]
lab@mxA-1# load override ajspr/lab3-start.config
load complete
[edit]
lab@mxA-1# commit
commit complete
[edit]
lab@mxA-1#
Step 1.4
Variable references are used throughout this lab to distinguish various parts of the
command-line interface (CLI) input.
1. Variable R will be 1 or 2 but will indicate a value from your remote team’s
devices. Just remember “R for Remote.”
2. Variable V indicates the last number of the VLAN value on the links
connecting to the P1, P2 and P3 routers. On the mxX-1 side, the value will
be 1, 3 or 5. On the mxX-2 device, the value will be 2, 4 or 6. Just
remember “V for VLAN.”
3. Variable X indicates the pod letter: A, B, C, or D.
4. Variable Y will be a 1 or 2 depending on which student device you have
been assigned within your pod. Just remember “Y for Yours.”
5. Variable Z will be either 1, 2, 3, or 4 depending upon which pod you have
been assigned (A = 1, B = 2, C = 3, and D = 4).
www.juniper.net Advanced OSPF Options and Routing Policy (Detailed) • Lab 3–3
Advanced Junos Service Provider Routing
Navigate to the [edit protocols ospf] hierarchy. Establish the OSPF
adjacencies, from your default router, with P1, P2, and R3-Y. Configure OSPF Area 0
as the backbone area and do not forget the loopback address. Configure OSPF Area
10 as an NSSA and advertise a default route with a metric of 10. At this time, no
need exists to configure adjacencies from within the R3-Y virtual router. They were
pre-configured by the reset config you applied previously. OSPF Area 20 is
configured as a normal OSPF area i.e. not a stub or NSSA area. Commit the
configuration when completed.
[edit]
lab@mxA-1# edit protocols ospf
Lab 3–4 • Advanced OSPF Options and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Step 1.6
Issue a run show ospf neighbor command to verify the establishment of
OSPF adjacencies.
[edit protocols ospf]
lab@mxA-1# run show ospf neighbor
Address Interface State ID Pri Dead
172.22.121.2 ge-1/0/0.1111 Full 172.16.100.1 128 38
10.0.10.2 ge-1/0/4.0 Full 172.16.1.2 128 39
172.22.123.2 ge-1/0/0.1113 Full 172.16.101.1 128 32
Step 1.7
Verify that the routing table has connectivity to all devices in the OSPF domain. Use
the run show route table inet.0 protocol ospf | match /32
command to display only the host addresses.
[edit protocols ospf]
lab@mxA-1# run show route table inet.0 protocol ospf | match /32
20.20.1.1/32 *[OSPF/10] 01:34:55, metric 2
40.40.1.1/32 *[OSPF/10] 01:34:55, metric 2
172.16.1.2/32 *[OSPF/10] 01:34:55, metric 1
172.16.2.1/32 *[OSPF/10] 00:03:09, metric 2
172.16.2.2/32 *[OSPF/10] 01:34:55, metric 3
172.31.100.1/32 *[OSPF/10] 00:03:13, metric 1
172.31.101.1/32 *[OSPF/10] 00:03:13, metric 1
172.31.102.1/32 *[OSPF/10] 00:03:18, metric 2
224.0.0.5/32 *[OSPF/10] 01:35:10, metric 1
www.juniper.net Advanced OSPF Options and Routing Policy (Detailed) • Lab 3–5
Advanced Junos Service Provider Routing
Question: With the exception of the 224.0.0.5/32
OSPF multicast address and your own loopback
address, is there an entry in the primary routing
table (inet.0) for the other eight loopback addresses
within the OSPF domain?
Step 1.8
Using the OSPF virtual-link command, configure a virtual link in OSPF Area 0
that uses Area 20 as the transit-area. The virtual link’s neighbor-id is the
loopback address of your partner's default router. The virtual link should be used
only as a backup in the event of a P1 failure. This can be accomplished by setting
the Area 20 interface to a high metric. Commit this configuration when completed.
[edit protocols ospf]
lab@mxA-1# set area 0 virtual-link transit-area 20 neighbor-id 172.16.R.1
Lab 3–6 • Advanced OSPF Options and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Question: What type of interface is created for the
virtual link?
Step 1.10
Verify that the virtual link has an adjacency. Use the run show ospf neighbor
command to display the state of the virtual link interface.
[edit protocols ospf]
lab@mxA-1# run show ospf neighbor
Address Interface State ID Pri Dead
172.22.121.2 ge-1/0/0.1111 Full 172.31.100.1 128 39
172.22.124.1 vl-172.16.2.1 Full 172.16.2.1 0 32
10.0.10.2 ge-1/0/4.0 Full 172.16.1.2 128 34
172.22.123.2 ge-1/0/0.1113 Full 172.31.101.1 128 31
Step 1.11
Use the run show route table inet.0 172.16.R.1/32 command to
verify that your partner's default loopback address still routes through the P1 router
and not through the virtual link.
[edit protocols ospf]
lab@mxA-1# run show route table inet.0 172.16.R.1/32
www.juniper.net Advanced OSPF Options and Routing Policy (Detailed) • Lab 3–7
Advanced Junos Service Provider Routing
Question: Is the loopback address of your partner’s
student device using the P1 router or the virtual
link?
In this lab part, you use the OSPF multiarea adjacency command outlined in
RFC 5185 to provide an alternate path for OSPF Area 0.0.0.10.
Step 2.1
Configure an OSPF Area 10 adjacency through the P1 router as a secondary
interface with a metric of 10. Adding the Area 0 interface to Area10 with the
secondary setting will provide a backup path for Area 10 in the event of a P3
failure. Commit these changes when completed.
[edit protocols ospf]
lab@mxA-1# set area 10 interface ge-1/0/0.11ZV secondary metric 10
Lab 3–8 • Advanced OSPF Options and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Question: The interface connected to P1 has two
established states in OSPF. What is the established
state for the interface in Area 0.0.0.10? Why?
Step 2.3
Use the run show ospf neighbor command to verify the establishment of an
OSPF Area 10 adjacency through P1.
[edit protocols ospf]
lab@mxA-1# run show ospf neighbor
Address Interface State ID Pri Dead
172.22.121.2 ge-1/0/0.1111 Full 172.31.100.1 128 39
Area 0.0.0.0
172.22.124.1 vl-172.16.2.1 Full 172.16.2.1 0 35
Area 0.0.0.0
172.22.121.2 ge-1/0/0.1111 Full 172.31.100.1 128 32
Area 0.0.0.10
10.0.10.2 ge-1/0/4.0 Full 172.16.1.2 128 36
Area 0.0.0.10
172.22.123.2 ge-1/0/0.1113 Full 172.31.101.1 128 38
Area 0.0.0.20
Step 2.4
Use the run show route table inet.0 172.16.R.2/32 command to
verify that the loopback address of your partner's R3-R router is being routed
through the interface to your R3-Y router.
[edit protocols ospf]
lab@mxA-1# run show route table inet.0 172.16.R.2/32
www.juniper.net Advanced OSPF Options and Routing Policy (Detailed) • Lab 3–9
Advanced Junos Service Provider Routing
172.16.2.2/32 *[OSPF/10] 02:15:09, metric 3
> to 10.0.10.2 via ge-1/0/4.0
[edit]
lab@mxA-1# set interfaces ge-1/0/4 disable
[edit]
lab@mxA-1# commit
commit complete
[edit]
lab@mxA-1#
Step 2.6 Lab Team 1 only
Use the run show route table inet.0 172.16.2.2/32 command to
verify that the multiarea connectivity for OSPF Area 0.0.0.10 has converged through
the P1 router.
[edit]
lab@mxA-1# run show route table inet.0 172.16.2.2/32
[edit]
lab@mxA-1#
Step 2.7 Lab Team 1 only
Use the run traceroute 172.16.2.2 command to verify that the traffic is
traversing P1.
[edit]
lab@mxA-1# run traceroute 172.16.2.2
traceroute to 172.16.2.2 (172.16.2.2), 30 hops max, 40 byte packets
1 172.22.121.2 (172.22.121.2) 0.478 ms 0.282 ms 0.252 ms
Lab 3–10 • Advanced OSPF Options and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
2 172.22.122.1 (172.22.122.1) 0.311 ms 0.269 ms 0.267 ms
3 172.16.2.2 (172.16.2.2) 0.394 ms 0.360 ms 0.386 ms
[edit]
lab@mxA-1#
[edit]
lab@mxA-1# commit
commit complete
[edit]
lab@mxA-1#
Step 2.9 Lab Team 1 only
Verify that OSPF converged back to the primary path by displaying your partner's
loopback address using the run show route table inet.0
172.16.2.2/32 and run traceroute 172.16.2.2 commands.
Note
It might take a minute for the ge-1/0/4
interface to return to a Full state.
[edit]
lab@mxA-1# run show route table inet.0 172.16.2.2/32
[edit]
lab@mxA-1# run traceroute 172.16.2.2
traceroute to 172.16.2.2 (172.16.2.2), 30 hops max, 40 byte packets
1 10.0.10.2 (10.0.10.2) 0.379 ms 0.271 ms 0.254 ms
www.juniper.net Advanced OSPF Options and Routing Policy (Detailed) • Lab 3–11
Advanced Junos Service Provider Routing
2 172.22.125.2 (172.22.125.2) 0.277 ms 0.262 ms 0.263 ms
3 172.16.2.2 (172.16.2.2) 0.432 ms 0.350 ms 0.342 ms
[edit]
lab@mxA-1#
In this lab part, you configure an external connection from the R3 routing instance to
a RIP network. Once established, the RIP routes will be redistributed into OSPF.
Step 3.1
Navigate to the [edit routing-instances R3-Y] hierarchy. Remove the
OSPF Area 10 interface that connects to the P3 router and configure that interface
in protocols RIP. Use a RIP group name of P3 and commit the configuration when
completed.
[edit]
lab@mxA-1# top edit routing-instances R3-Y
Lab 3–12 • Advanced OSPF Options and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
[edit routing-instances R3-1]
lab@mxA-1# run show route receive-protocol rip 172.22.12V.2 table R3-Y.inet.0
www.juniper.net Advanced OSPF Options and Routing Policy (Detailed) • Lab 3–13
Advanced Junos Service Provider Routing
}
then accept;
}
Note
The next two steps will need to be
coordinated with your remote team
partners.
Step 3.4
Note
This step is to be performed by Team 1
only. Team 2 will perform the same step
after waiting two minutes from the time of
this commit.
Note
This step is to be performed by Team 2 only
after waiting two minutes from the commit
time of the previous step.
Lab 3–14 • Advanced OSPF Options and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Note
The output from both routers is shown in
the following capture.
...........................................................................
www.juniper.net Advanced OSPF Options and Routing Policy (Detailed) • Lab 3–15
Advanced Junos Service Provider Routing
Question: Is the default route being advertised to
R3?
Step 3.7
Display the default route in the R3 routing table using the run show route 0/0
exact table R3-Y.inet.0 command.
Note
The output from both routers is shown in
the following capture.
...........................................................................
Lab 3–16 • Advanced OSPF Options and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Step 3.8
Set the OSPF external-preference to 90 for the R3-Y router. Doing so will
make the OSPF external preference less than the RIP preference of 100. Commit the
changes when completed.
[edit routing-instances R3-1]
lab@mxA-1# set protocols ospf external-preference 90
Note
The output from both routers is shown in
the following capture.
...........................................................................
[edit routing-instances R3-2]
lab@mxA-2# run show route advertising-protocol rip 172.22.126.1 table
R3-2.inet.0
Note
Do not be alarmed if you do not see the RIP
route as shown in the previous mxX-2
output. It will eventually time out and be
removed from the routing table. The key is
to see that the active route for 0/0 is now
an OSPF route and that both routers are
now advertising it.
Step 3.10
Navigate to the [edit policy-options policy-statement
import-rip-route] hierarchy. Create a policy to accept only the 20.20/21
summary route from the RIP router.
[edit routing-instances R3-1]
lab@mxA-1# top edit policy-options policy-statement import-rip-route
www.juniper.net Advanced OSPF Options and Routing Policy (Detailed) • Lab 3–19
Advanced Junos Service Provider Routing
[edit routing-instances R3-1]
lab@mxA-1# run show route receive-protocol rip 172.22.12V.2 table R3-Y.inet.0
Step 3.13
Navigate to the [edit policy-options policy-statement
export-rip-route] hierarchy. Create a routing policy to redistribute the RIP
summary route into OSPF.
[edit routing-instances R3-1]
lab@mxA-1# top edit policy-options policy-statement export-rip-route
Note
This step is to be performed by Team 1
only. Team 2 will perform the same step
after waiting two minutes from the time of
this commit.
Lab 3–20 • Advanced OSPF Options and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Team 1 only. Navigate to the [edit routing-instances R3-Y] hierarchy.
Before applying the policy as an OSPF export policy, protect the network from
unnecessary routes by configuring a prefix-export-limit of 1 within protocols OSPF.
Commit the configuration when completed.
[edit policy-options policy-statement export-rip-route]
lab@mxA-1# top edit routing-instances R3-1
Note
This step is to be performed by Team 2 only
after waiting two minutes from the commit
time of the previous step.
www.juniper.net Advanced OSPF Options and Routing Policy (Detailed) • Lab 3–21
Advanced Junos Service Provider Routing
Note
The output from both routers is shown in
the following capture.
...........................................................................
Step 3.17
Examine the OSPF Type 7 to Type 5 conversion between the OSPF NSSA area and
the OSPF backbone area. Use the run show ospf database area 10 nssa
detail command to display the Type 7 LSAs and the run show ospf
database external detail to display the Type 5 LSA.
[edit routing-instances R3-1]
lab@mxA-1# run show ospf database area 10 nssa detail
Lab 3–22 • Advanced OSPF Options and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
mask 0.0.0.0
Topology default (ID 0)
Type: 1, Metric: 10, Fwd addr: 0.0.0.0, Tag: 0.0.0.0
NSSA 0.0.0.0 172.16.2.1 0x80000003 1446 0x20 0x392e 36
mask 0.0.0.0
Topology default (ID 0)
Type: 1, Metric: 10, Fwd addr: 0.0.0.0, Tag: 0.0.0.0
NSSA 20.20.0.0 172.16.1.2 0x80000001 2078 0x28 0x35d2 36
mask 255.255.248.0
Topology default (ID 0)
Type: 2, Metric: 2, Fwd addr: 172.16.1.2, Tag: 0.0.0.0
Step 3.18
Navigate to the [edit policy-options policy-statement
ospf-import] hierarchy. Create the OSPF import policy to block the 20.20/21
RIP summary route from being installed in the routing table from OSPF.
[edit routing-instances R3-1]
lab@mxA-1# top edit policy-options policy-statement ospf-import
www.juniper.net Advanced OSPF Options and Routing Policy (Detailed) • Lab 3–23
Advanced Junos Service Provider Routing
[edit policy-options policy-statement ospf-import]
lab@mxA-1# set term 1 then reject
lab@mxA-1>
Step 3.20
Verify that the OSPF import policy is working and that optimal routing is being
performed to the RIP network by using the traceroute 20.20.1.1
routing-instance R3-Y command.
Note
The output from both routers is shown in
the following capture.
lab@mxA-1>
...........................................................................
Lab 3–24 • Advanced OSPF Options and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
1 20.20.1.1 (20.20.1.1) 0.547 ms 0.387 ms 0.352 ms
lab@mxA-2>
Step 3.21
Log out of your assigned device using the exit command.
lab@mxA-1> exit
www.juniper.net Advanced OSPF Options and Routing Policy (Detailed) • Lab 3–25
Advanced Junos Service Provider Routing
Lab 3–26 • Advanced OSPF Options and Routing Policy (Detailed) www.juniper.net
Lab 4
IS-IS Configuration and Monitoring (Detailed)
Overview
In this lab, you will use the lab diagram titled “Lab 4: IS-IS Configuration and Monitoring”
to establish an IS-IS routing domain. The IS-IS network will be configured on top of the
OSPF network currently running from Lab 3. After verifying the IS-IS configuration, routing
will be converted from OSPF to IS-IS.
By completing this lab, you will perform the following tasks:
• Configure support of the ISO protocol data unit (PDU).
• Configure the IS-IS Network Entity Title (NET).
• Establish IS-IS adjacencies.
• Monitor IS-IS interfaces and adjacencies.
Note
The lab topology requires you to display
information in the different virtual routing
instances. When referencing the routing
instance, the commands include the
routing instance name, R3-Y, where Y is
the user number (1 or 2). Refer to the lab
diagram for the correct instance and user
number.
When performing network commands such
as ping or traceroute within the
routing instance, the
routing-instance R3-Y switch must
be used to consult the appropriate virtual
instance. When performing show
commands, the instance R3-Y or
table R3-Y switch must be used to
display the appropriate adjacencies or
routing tables.
In this lab part, you load the reset configuration and configure family iso on all
transit interfaces that could support IS-IS PDUs. The ingress I/O manager verifies
Layer 3 packet headers based on the configuration provided for each logical
interface including IPv4 and IPv6 protocols. Because the IS-IS PDU is not an IPv4 or
IPv6 packet, the hardware must be configured to process this ISO PDU.
Step 1.1
Access the CLI on your student device using either the console, Telnet, or SSH as
directed by your instructor. Refer to the management network diagram for the IP
address associated with your student device. The following example demonstrates a
simple Telnet session with the Secure CRT program as a basis:
Step 1.2
Log in to the router with the username lab using a password of lab123. Note that
both the name and password are case-sensitive.
mxA-1 (ttyu0)
login: lab
Password:
[edit]
lab@mxA-1# load override ajspr/lab4-start.config
load complete
[edit]
lab@mxA-1# commit
[edit]
lab@mxA-1#
Step 1.4
Navigate to the [edit group ISO] hierarchy. Using wildcard commands,
configure all transit interfaces (interface <*-*>) to support the IS-IS family iso
on all logical units (unit <*>).
[edit]
lab@mxA-1# edit groups ISO
[edit interfaces]
lab@mxA-1# set apply-groups ISO
[edit interfaces]
lab@mxA-1# commit
commit complete
[edit interfaces]
lab@mxA-1#
Step 1.6
Use the show | display inheritance command to verify that family iso
has been inherited by all transit logical interfaces.
[edit interfaces]
lab@mxA-1# show | display inheritance
ge-1/0/0 {
vlan-tagging;
unit 1111 {
description "connection to P1";
vlan-id 1111;
family inet {
address 172.22.121.1/24;
}
##
## 'iso' was inherited from group 'ISO'
##
family iso;
}
[edit interfaces]
lab@mxA-1#
Step 1.7
Issue a run show interface terse command to verify the family iso
configuration on the interfaces.
[edit interfaces]
lab@mxA-1# run show interfaces terse
Interface Admin Link Proto Local Remote
lc-0/0/0 up up
lc-0/0/0.32769 up up vpls
xe-0/0/0 up down
xe-0/0/1 up down
xe-0/0/2 up down
xe-0/0/3 up down
ge-1/0/0 up up
ge-1/0/0.1111 up up inet 172.22.121.1/24
iso
multiservice
ge-1/0/0.1113 up up inet 172.22.123.1/24
iso
multiservice
ge-1/0/0.1115 up up inet 172.22.125.1/24
iso
multiservice
ge-1/0/0.32767 up up multiservice
ge-1/0/1 up up
ge-1/0/2 up up
ge-1/0/3 up up
ge-1/0/4 up up
ge-1/0/4.0 up up inet 10.0.10.1/24
iso
multiservice
[edit interfaces]
lab@mxA-1#
Variable references are used throughout this lab to distinguish various parts of
command-line interface (CLI) input.
1. Variable R will be 1 or 2 but will indicate a value from your remote team’s
devices. Just remember “R for Remote.”
2. Variable V indicates the last number of the VLAN value on the links
connecting to the P1, P2 and P3 routers. On the mxX-1 side, the value will
be 1, 3 or 5. On the mxX-2 device, the value will be 2, 4 or 6. Just
remember “V for VLAN.”
3. Variable X indicates the pod letter: A, B, C, or D.
4. Variable Y will be a 1 or 2 depending on which student device you have
been assigned within your pod. Just remember “Y for Yours.”
5. Variable Z will be either 1, 2, 3 or 4 depending upon which pod you have
been assigned (A = 1, B = 2, C = 3, and D = 4).
In this lab part, you configure IS-IS to define the NET address on an active IS-IS
interface. This address is typically configured on the loopback interface because it is
always an active interface on the router. Use the following chart to determine the
correct NET addresses for your student device.
In this lab part, you configure IS-IS on the participating interfaces under
protocols isis. The IS-IS default operation for all configured interfaces is to
form an adjacency in both Level 1 and Level 2 when possible.
Step 3.1
Navigate to the [edit protocols isis] hierarchy. In the default routing
instance configure three interfaces: the loopback interface (lo0.0), the
P1 interface (ge-1/0/0.11ZV) and the R3 routing instance interface
(ge-1/0/4.0).
[edit interfaces lo0]
lab@mxA-1# top edit protocols isis
Step 3.4
Use the run show isis adjacency command to verify IS-IS adjacencies in the
default routing instance.
[edit routing-instances R3-1 protocols isis]
lab@mxA-1# run show isis adjacency
Interface System L State Hold (secs) SNPA
ge-1/0/0.1111 vr-device 2 Up 7 80:71:1f:c3:f7:60
ge-1/0/4.0 1720.1600.1002 1 Up 7 80:71:1f:c3:3:7c
ge-1/0/4.0 1720.1600.1002 2 Up 6 80:71:1f:c3:3:7c
In this lab part, you change the IS-IS preference to make the OSPF routes less
preferred than the IS-IS routes. You change this preference because the routing
preference for OSPF internal routes is less than the IS-IS Level 2 internal routing
preference; the OSPF routes will be preferred over the IS-IS routes. After the routing
table has migrated to the IS-IS routes, you remove the OSPF configuration.
Step 4.1
Using the run show route 172.16/16 table inet.0 command, verify that
the internal routes are using OSPF as the preferred routing protocol in the default
routing instance (inet.0).
[edit routing-instances R3-1 protocols isis]
lab@mxA-1# run show route 172.16/16 table inet.0
Note
If you do not see the IS-IS route for the R3-Y
loopback address immediately, issue the
run clear isis database command
to speed up the process.
Step 4.2
Navigate to the [edit protocols ospf] hierarchy. In both your default
instance and your R3-Y instance, change the OSPF internal preference to 20,
which is higher than both the IS-IS Level 1 and Level 2 preference. Commit the
changes when completed.
[edit routing-instances R3-1 protocols isis]
lab@mxA-1# top edit protocols ospf
Step 4.4
Go to the top of the configuration hierarchy and delete protocols ospf from both
routing instances. Commit the changes and exit to operational mode.
[edit protocols ospf]
lab@mxA-1# top
[edit]
lab@mxA-1# delete protocols ospf
[edit]
lab@mxA-1# delete routing-instances R3-Y protocols ospf
[edit]
lab@mxA-1# commit and-quit
commit complete
Exiting configuration mode
lab@mxA-1>
Step 4.5
Using the show route 172.16/16 table inet.0 command, verify that no
OSPF routes are present in the default routing table.
lab@mxA-1>
In this lab part, you examine both the IS-IS link state database (LSDB) and the
shortest-path-first (SPF) tree database. The IS-IS LSDB data is input into the SPF
algorithm and the algorithm creates two more databases, a candidate database and
tree database. The candidate database is temporary and is deleted after the SPF
calculation is complete. The SPF tree database is used to populate the local routing
table.
Step 5.1
Use the show isis database command to display the IS-IS LSDB.
lab@mxA-1> show isis database
IS-IS level 1 link-state database:
LSP ID Sequence Checksum Lifetime Attributes
mxA-1.00-00 0x5 0x87f7 1127 L1 L2 Attached
1 LSPs
lab@mxA-1>
Step 5.2
Use the show isis database level 2 mxX-Y.00 extensive command
to display the IS-IS header and the type/length/value (TLV) entries for the default
routing instance LSP.
lab@mxA-1> show isis database level 2 mxX-Y.00 extensive
IS-IS level 2 link-state database:
Packet: LSP ID: mxA-1.00-00, Length: 202 bytes, Lifetime : 1198 secs
Checksum: 0x21bb, Sequence: 0xc, Attributes: 0x3 <L1 L2>
NLPID: 0x83, Fixed length: 27 bytes, Version: 1, Sysid length: 0 bytes
Packet type: 20, Packet version: 1, Max area: 0
TLVs:
Area address: 49.0001 (3)
Speaks: IP
Speaks: IPV6
IP router id: 172.16.1.1
IP address: 172.16.1.1
Hostname: mxA-1
IS neighbor: vr-device.03, Internal, Metric: default 10
IS neighbor: 1720.1600.1002.02, Internal, Metric: default 10
IS extended neighbor: vr-device.03, Metric: default 10
IP address: 172.22.121.1
Local interface index: 328, Remote interface index: 0
IS extended neighbor: 1720.1600.1002.02, Metric: default 10
IP address: 10.0.10.1
Local interface index: 330, Remote interface index: 0
IP prefix: 172.22.121.0/24, Internal, Metric: default 10, Up
IP prefix: 10.0.10.0/24, Internal, Metric: default 10, Up
IP prefix: 172.16.1.1/32, Internal, Metric: default 0, Up
IP extended prefix: 172.22.121.0/24 metric 10 up
IP extended prefix: 10.0.10.0/24 metric 10 up
IP extended prefix: 172.16.1.1/32 metric 0 up
No queued transmissions
lab@mxA-1>
lab@mxA-1>
Step 5.4
Log out of your assigned device using the exit command.
lab@mxA-1> exit
Overview
In this lab, you will use the lab diagram titled “Lab 5: Advanced IS-IS Configuration and
Routing Policy” to establish an extended IS-IS Level 2 routing domain. This extended
network will allow implementation and monitoring of some of the IS-IS advanced
configuration options. In addition, this lab will provide further insight into the IS-IS
database with the redistribution of external routes.
The lab is available in two formats: a high-level format designed to make you think through
each step and a detailed format that offers step-by-step instructions complete with
sample output from most commands.
By completing this lab, you will perform the following tasks:
• Manipulate routing using various metrics.
• Authenticate IS-IS hello packets.
• Explore the use of the overload bit.
• Redistribute routes between IS-IS and RIP.
www.juniper.net Advanced IS-IS Configuration and Routing Policy (Detailed) • Lab 5–1
11.a.11.4R1.14
Advanced Junos Service Provider Routing
Note
The lab topology requires you to display
information in the different virtual routing
instances. When referencing the routing
instance, the commands include the
routing instance name, R3-Y, where Y is
the user number (1 or 2). Refer to the lab
diagram for the correct instance and user
number.
When performing network commands such
as ping or traceroute within the
routing instance, the
routing-instance R3-Y switch must
be used to consult the appropriate virtual
instance. When performing show
commands, the instance R3-Y or
table R3-Y switch must be used to
display the appropriate adjacencies or
routing tables.
The extended IS-IS topology, as outlined in the lab diagram, consists of four virtual
routing instances in each of the student devices.
Step 1.1
Access the CLI on your student device using either the console, Telnet, or SSH as
directed by your instructor. Refer to the management network diagram for the IP
address associated with your student device. The following example demonstrates a
simple Telnet session with the Secure CRT program as a basis:
Step 1.2
Log in to the router with the username lab using a password of lab123. Note that
both the name and password are case-sensitive.
Lab 5–2 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
mxA-1 (ttyu0)
login: lab
Password:
[edit]
lab@mxA-1# load override ajspr/lab5-start.config
load complete
[edit]
lab@mxA-1# commit
commit complete
[edit]
lab@mxA-1#
Step 1.4
Use the run show isis interface and run show isis adjacency
commands to verify that the new extended IS-IS topology has been loaded into the
student device.
[edit]
lab@mxA-1# run show isis interface
IS-IS interface database:
Interface L CirID Level 1 DR Level 2 DR L1/L2 Metric
ge-1/0/0.1111 2 0x1 Disabled vr-device.02 10/10
ge-1/0/4.0 2 0x1 Disabled 1720.1600.1002.02 10/10
ge-1/0/5.0 2 0x1 Disabled 1720.1600.1003.02 10/10
lo0.0 0 0x1 Passive Passive 0/0
[edit]
lab@mxA-1# run show isis adjacency
Interface System L State Hold (secs) SNPA
ge-1/0/0.1111 vr-device 2 Up 8 80:71:1f:c3:f7:60
ge-1/0/4.0 1720.1600.1002 2 Up 8 80:71:1f:c3:3:7c
ge-1/0/5.0 1720.1600.1003 2 Up 8 80:71:1f:c3:3:7d
[edit]
lab@mxA-1#
www.juniper.net Advanced IS-IS Configuration and Routing Policy (Detailed) • Lab 5–3
Advanced Junos Service Provider Routing
Step 1.5
Variable references are used throughout this lab to distinguish various parts of
command-line interface (CLI) input.
1. Variable R will be 1 or 2 but will indicate a value from your remote team’s
devices. Just remember “R for Remote.”
2. Variable V indicates the last number of the VLAN value on the links
connecting to the P1, P2 and P3 routers. On the mxX-1 side, the value will
be 1, 3 or 5. On the mxX-2 device, the value will be 2, 4 or 6. Just
remember “V for VLAN.”
3. Variable X indicates the pod letter: A, B, C, or D.
4. Variable Y will be a 1 or 2 depending on which student device you have
been assigned within your pod. Just remember “Y for Yours.”
5. Variable Z will be either 1, 2, 3, or 4 depending upon which pod you have
been assigned (A = 1, B = 2, C = 3, and D = 4).
Use the run show isis interface instance R5-Y command to verify that
the new extended IS-IS topology has been loaded into the student device.
[edit]
lab@mxA-1# run show isis interface instance R5-Y
IS-IS interface database:
Interface L CirID Level 1 DR Level 2 DR L1/L2 Metric
ge-1/1/6.0 2 0x2 Disabled 1720.1600.1004.02 10/10
ge-1/1/7.0 2 0x3 Disabled 1720.1600.1004.03 10/10
lo0.3 0 0x1 Passive Passive 0/0
[edit]
lab@mxA-1#
Step 1.6
Use the run show isis adjacency instance R5-Y command to verify that
the new extended IS-IS topology has been loaded into the student device.
[edit]
lab@mxA-1# run show isis adjacency instance R5-Y
Interface System L State Hold (secs) SNPA
ge-1/1/6.0 1720.1600.1002 2 Up 21 80:71:1f:c3:3:66
ge-1/1/7.0 1720.1600.1003 2 Up 20 80:71:1f:c3:3:67
[edit]
lab@mxA-1#
Lab 5–4 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Question: Are any Level 1 IS-IS adjacencies
established?
Step 1.7
Use the run show isis database command to examine the current IS-IS
LSDB.
[edit]
lab@mxA-1# run show isis database
IS-IS level 1 link-state database:
LSP ID Sequence Checksum Lifetime Attributes
mxA-1.00-00 0x6 0x85f8 1163 L1 L2 Attached
1 LSPs
[edit]
lab@mxA-1#
www.juniper.net Advanced IS-IS Configuration and Routing Policy (Detailed) • Lab 5–5
Advanced Junos Service Provider Routing
Question: All of the IS-IS adjacencies are IS-IS
Level 2. Why is there an LSP in the IS-IS Level 1
database?
Lab 5–6 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
[edit protocols isis]
lab@mxA-1#
Using md5 as the type and juniper as the key, configure Level 2
hello-authentication on the interface that is connected to the R4-Y routing instance.
[edit protocols isis]
lab@mxA-1# set interface ge-1/0/5.0 level 2 hello-authentication-type md5
lab@mxA-1>
www.juniper.net Advanced IS-IS Configuration and Routing Policy (Detailed) • Lab 5–7
Advanced Junos Service Provider Routing
Step 2.4
Use the monitor traffic interface command to verify that the IS-IS hello
packets are using the MD5 authentication. Use the Ctrl+c key sequence to stop the
monitor output after a couple of seconds.
lab@mxA-1> monitor traffic interface ge-1/0/4.0 detail no-resolve
Address resolution is OFF.
Listening on ge-1/0/4, capture size 1514 bytes
lab@mxA-1>
Step 2.5
Use the show isis adjacency command to verify that the IS-IS adjacencies are
established using the hello-authentication configuration.
lab@mxA-1> show isis adjacency
Interface System L State Hold (secs) SNPA
ge-1/0/0.1111 vr-device 2 Up 8 80:71:1f:c3:f7:60
ge-1/0/4.0 1720.1600.1002 2 Up 7 80:71:1f:c3:3:7c
ge-1/0/5.0 1720.1600.1003 2 Up 6 80:71:1f:c3:3:7d
lab@mxA-1>
Lab 5–8 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Question: What is the state of the IS-IS adjacencies
with the MD5 authentication configured?
Several methods of manipulating routes exist within IS-IS. By changing the metrics
on the IS-IS interfaces, default routing behavior can be affected. In this lab part, you
explore some of these methods.
Step 3.1
Use the show isis interface command to examine the default metrics
assigned to the IS-IS interfaces.
lab@mxA-1> show isis interface
IS-IS interface database:
Interface L CirID Level 1 DR Level 2 DR L1/L2 Metric
ge-1/0/0.1111 2 0x1 Disabled vr-device.02 10/10
ge-1/0/4.0 2 0x1 Disabled 1720.1600.1002.02 10/10
ge-1/0/5.0 2 0x1 Disabled 1720.1600.1003.02 10/10
lo0.0 0 0x1 Passive Passive 0/0
lab@mxA-1>
Step 3.2
Use the show route 172.16.Y.4/32 table inet.0 command to display
the loopback interface of the R5-Y routing instance within your student device in
the default routing table. Note that there are two equal cost paths and the Junos OS
has chosen one of them.
lab@mxA-1> show route 172.16.Y.4/32 table inet.0
www.juniper.net Advanced IS-IS Configuration and Routing Policy (Detailed) • Lab 5–9
Advanced Junos Service Provider Routing
172.16.1.4/32 *[IS-IS/18] 00:11:52, metric 20
to 10.0.11.2 via ge-1/0/5.0
> to 10.0.10.2 via ge-1/0/4.0
lab@mxA-1>
Step 3.3
Enter configuration mode and navigate to the [edit protocols isis]
hierarchy. Use the reference-bandwidth command to change the default
metric. Use 1 gigabit as the calculating bandwidth. Commit the change when
completed.
lab@mxA-1> configure
Entering configuration mode
[edit]
lab@mxA-1# edit protocols isis
Lab 5–10 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Question: What has happened to the Level 1 and
Level 2 metrics on the IS-IS interfaces?
Step 3.5
Use the run show route 172.16.Y.4/32 table inet.0 command to
display the loopback of your device’s R5 routing instance from the perspective of the
default routing instance.
[edit protocols isis]
lab@mxA-1# run show route 172.16.Y.4/32 table inet.0
Step 3.6
On the ge-1/0/5.0 interface connecting the default routing instance to the R4-Y,
change the Level 2 metric to 1000. Commit the change when completed.
[edit protocols isis]
lab@mxA-1# set interface ge-1/0/5.0 level 2 metric 1000
Step 3.9
Enable IS-IS overload on the R3-Y routing-instance, which is the active
intermediate node to the R5-Y routing instance. Commit the change when
completed.
Lab 5–12 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
[edit protocols isis]
lab@mxA-2# top set routing-instances R3-Y protocols isis overload
Step 3.11
Verify that the route has moved to the R4-Y routing instance using the run show
route 172.16.Y.4/32 table inet.0 command.
www.juniper.net Advanced IS-IS Configuration and Routing Policy (Detailed) • Lab 5–13
Advanced Junos Service Provider Routing
[edit protocols isis]
lab@mxA-1# run show route 172.16.Y.4/32 table inet.0
Answer: TLV 128 only has 6 bits it can use for the
metric value of the prefix. Therefore, the highest
metric value that can be advertised in the TLV is 63.
The remote network cost is 63 plus 10, or 73.
Step 3.12
Use the run show isis database level 2 mxX-Y.00 extensive |
find tlv command to display the TLVs that are being advertised in the default
routing instance LSP.
[edit protocols isis]
lab@mxA-1# run show isis database level 2 mxX-Y.00 extensive | find tlv
TLVs:
Area address: 49.0001 (3)
Speaks: IP
Speaks: IPV6
IP router id: 172.16.1.1
IP address: 172.16.1.1
Hostname: mxA-1
IS neighbor: vr-device.03, Internal, Metric: default 1
IS neighbor: 1720.1600.1002.02, Internal, Metric: default 1
IS neighbor: 1720.1600.1003.02, Internal, Metric: default 63
IS extended neighbor: vr-device.03, Metric: default 1
IP address: 172.22.121.1
Local interface index: 328, Remote interface index: 0
IS extended neighbor: 1720.1600.1002.02, Metric: default 1
IP address: 10.0.10.1
Local interface index: 330, Remote interface index: 0
IS extended neighbor: 1720.1600.1003.02, Metric: default 63
IP address: 10.0.11.1
Local interface index: 338, Remote interface index: 0
IP prefix: 172.22.121.0/24, Internal, Metric: default 1, Up
IP prefix: 10.0.10.0/24, Internal, Metric: default 1, Up
Lab 5–14 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
IP prefix: 10.0.11.0/24, Internal, Metric: default 63, Up
IP prefix: 172.16.1.1/32, Internal, Metric: default 0, Up
IP extended prefix: 172.22.121.0/24 metric 1 up
IP extended prefix: 10.0.10.0/24 metric 1 up
IP extended prefix: 10.0.11.0/24 metric 63 up
IP extended prefix: 172.16.1.1/32 metric 0 up
No queued transmissions
Step 3.13
Enable wide-metrics-only for Level 2 interfaces on the default routing
instance. Commit the configuration when completed.
[edit protocols isis]
lab@mxA-1# set level 2 wide-metrics-only
www.juniper.net Advanced IS-IS Configuration and Routing Policy (Detailed) • Lab 5–15
Advanced Junos Service Provider Routing
Hostname: mxA-1
IS extended neighbor: vr-device.03, Metric: default 1
IP address: 172.22.121.1
Local interface index: 328, Remote interface index: 0
IS extended neighbor: 1720.1600.1002.02, Metric: default 1
IP address: 10.0.10.1
Local interface index: 330, Remote interface index: 0
IS extended neighbor: 1720.1600.1003.02, Metric: default 1000
IP address: 10.0.11.1
Local interface index: 338, Remote interface index: 0
IP extended prefix: 172.22.121.0/24 metric 1 up
IP extended prefix: 10.0.10.0/24 metric 1 up
IP extended prefix: 10.0.11.0/24 metric 1000 up
IP extended prefix: 172.16.1.1/32 metric 0 up
No queued transmissions
Step 3.15
Use the run show route 172.16.Y.4/32 table inet.0 command to
display the route to the R5 routing instance loopback address.
[edit protocols isis]
lab@mxA-1# run show route 172.16.Y.4/32 table inet.0
Lab 5–16 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Question: What is the cost to the remote network
now?
In this lab part, you configure external routes to be redistributed into IS-IS using
routing policy. An external connection to a RIP network must be established. Once
established, you create a RIP import policy to only accept routes from the RIP router
that have a prefix-length of /24. These routes are redistributed into IS-IS and a
default route is advertised into RIP.
Step 4.1
Navigate to the [edit routing-instances R5-Y] hierarchy. Add the
ge-1/0/0.11ZV interface that connects the P3 device to your R5-Y routing
instance.
[edit protocols isis]
lab@mxA-1# top edit routing-instances R5-Y
www.juniper.net Advanced IS-IS Configuration and Routing Policy (Detailed) • Lab 5–17
Advanced Junos Service Provider Routing
Step 4.3
Verify that a RIP neighbor has been established with the P3 router using the run
show rip neighbor instance R5-Y command. Also, use the run show
route receive-protocol rip 172.22.12V.2 table R5-Y.inet.0
command to view all routes being received from the RIP router.
Note
Remember, when executing a show
command for a routing-instance, the
instance and table key words are required
to view information within the
routing-instance.
Lab 5–18 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Question: Is the RIP neighbor established? What is
the RIP version 2 destination multicast address?
Step 4.4
Navigate to the [edit policy-options policy-statement
import-rip-routes] hierarchy. Create a policy to accept only RIP routes with a
prefix-length of /24. No other RIP routes should be accepted.
[edit routing-instances R5-1 protocols rip group P3]
lab@mxA-1# top edit policy-options policy-statement import-rip-routes
www.juniper.net Advanced IS-IS Configuration and Routing Policy (Detailed) • Lab 5–19
Advanced Junos Service Provider Routing
[edit routing-instances R5-1]
lab@mxA-1# set protocols rip group P3 import import-rip-routes
Step 4.7
Navigate to the [edit policy-options policy-statement
export-rip-default] hierarchy. Configure the policy to advertise a default
route.
[edit routing-instances R5-1]
lab@mxA-1# top edit policy-options policy-statement export-rip-default
Lab 5–20 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Step 4.10
Use the run show route 0/0 exact table R5-Y.inet.0 and run show
isis database instance R5-Y commands to provide you with the reason
why the default route is not being advertised to the RIP network.
www.juniper.net Advanced IS-IS Configuration and Routing Policy (Detailed) • Lab 5–21
Advanced Junos Service Provider Routing
[edit routing-instances R5-1 protocols rip group P3]
lab@mxA-1# run show route 0/0 exact table R5-Y.inet.0
Step 4.11
Create an aggregate default route in the R5-Y routing instance and commit the
change.
Lab 5–22 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
[edit routing-instances R5-1 protocols rip group P3]
lab@mxA-1# up 3 set routing-options aggregate route 0/0
Step 4.13
Navigate to the [edit policy-options policy-statement
export-rip-to-isis] hierarchy. Configure the export-rip-to-isis policy
to advertise the RIP routes as IS-IS external Type 1 routes.
[edit routing-instances R5-1 protocols rip group P3]
lab@mxA-1# top edit policy-options policy-statement export-rip-to-isis
www.juniper.net Advanced IS-IS Configuration and Routing Policy (Detailed) • Lab 5–23
Advanced Junos Service Provider Routing
lab@mxA-1# set term 1 then accept
lab@mxA-1>
Step 4.15
Use the show route 20.20/22 table inet.0 command to verify that the
RIP routes are active in the default inet.0 routing table as IS-IS external routes.
lab@mxA-1> show route 20.20/22 table inet.0
lab@mxA-1>
Lab 5–24 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Step 4.16
Log out of your assigned device using the exit command.
lab@mxA-1> exit
www.juniper.net Advanced IS-IS Configuration and Routing Policy (Detailed) • Lab 5–25
Advanced Junos Service Provider Routing
Lab 5–26 • Advanced IS-IS Configuration and Routing Policy (Detailed) www.juniper.net
Lab 6
Configuring a Multilevel IS-IS Network (Detailed)
Overview
In this lab, you will use the lab diagram titled “Lab 6: Configuring a Multilevel IS-IS
Network” to establish a multilevel IS-IS network. This diagram will provide you with the
topology to explore the default operation of a multilevel IS-IS environment, including the
flooding scope through the L1/L2 attached router. It will also provide you with the means
to change these default operations using routing policies.
The lab is available in two formats: a high-level format designed to make you think through
each step and a detailed format that offers step-by-step instructions complete with
sample output from most commands.
By completing this lab, you will perform the following tasks:
• Establish a multilevel IS-IS network.
• Explore the default flooding scope between L1 and L2.
• Explore the use of the attach bit.
• Use routing policy to summarize routes from L1 to L2.
• Redistribute external routes from L1 to L2.
• Use routing policies to leak routes from L2 to L1.
Note
The lab topology requires you to display
information in the different virtual routing
instances. When referencing the routing
instance, the commands include the
routing instance name, R3-Y, where Y is
the user number (1 or 2). Refer to the lab
diagram for the correct instance and user
number.
When performing network commands such
as ping or traceroute within the
routing instance, the
routing-instance R3-Y switch must
be used to consult the appropriate virtual
instance. When performing show
commands, the instance R3-Y or
table R3-Y switch must be used to
display the appropriate adjacencies or
routing tables.
In this lab part, you establish the multilevel IS-IS network. The multilevel IS-IS
topology, as outlined in the lab diagram, consists of four virtual routing instances in
each of the student devices.
Step 1.1
Access the CLI on your student device using either the console, Telnet, or SSH as
directed by your instructor. Refer to the management network diagram for the IP
address associated with your student device. The following example demonstrates a
simple Telnet session with the Secure CRT program as a basis:
Step 1.2
Log in to the router with the username lab using a password of lab123. Note that
both the name and password are case-sensitive.
login: lab
Password:
[edit]
lab@mxA-1# load override ajspr/lab6-start.config
load complete
[edit]
lab@mxA-1# commit and-quit
commit complete
Exiting configuration mode
lab@mxA-1>
Step 1.4
Use the show isis interface and show isis adjacency commands to
verify the state of the new extended IS-IS topology in the default routing instance.
lab@mxA-1> show isis interface
IS-IS interface database:
Interface L CirID Level 1 DR Level 2 DR L1/L2 Metric
ge-1/0/0.1111 2 0x1 Disabled vr-device.02 10/10
ge-1/0/4.0 2 0x1 Disabled 1720.1600.1002.02 10/10
ge-1/0/5.0 2 0x1 Disabled 1720.1600.1003.02 10/10
lo0.0 0 0x1 Passive Passive 0/0
lab@mxA-1>
Step 1.5
Variable references are used throughout this lab to distinguish various parts of
command-line interface (CLI) input.
1. Variable R will be 1 or 2 but will indicate a value from your remote team’s
devices. Just remember “R for Remote.”
2. Variable V indicates the last number of the VLAN value on the links
connecting to the P1, P2 and P3 routers. On the mxX-1 side, the value will
be 1, 3 or 5. On the mxX-2 device, the value will be 2, 4 or 6. Just
remember “V for VLAN.”
3. Variable X indicates the pod letter: A, B, C, or D.
4. Variable Y will be a 1 or 2 depending on which student device you have
been assigned within your pod. Just remember “Y for Yours.”
5. Variable Z will be either 1, 2, 3, or 4 depending upon which pod you have
been assigned (A = 1, B = 2, C = 3, and D = 4).
Use the show isis interface instance R3-Y and show isis
adjacency instance R3-Y commands to verify the state of the new extended
IS-IS topology in the R3-Y routing instance.
lab@mxA-1> show isis interface instance R3-Y
IS-IS interface database:
Interface L CirID Level 1 DR Level 2 DR L1/L2 Metric
ge-1/0/6.0 1 0x1 1720.1600.1004.03 Disabled 10/10
ge-1/1/4.0 2 0x2 Disabled 1720.1600.1002.02 10/10
lo0.1 0 0x1 Passive Passive 0/0
lab@mxA-1>
Step 1.6
Use the show isis interface instance R4-Y and show isis
adjacency instance R4-Y commands to verify the state of the new extended
IS-IS topology in the R4-Y routing instance.
lab@mxA-1> show isis interface instance R4-Y
IS-IS interface database:
Interface L CirID Level 1 DR Level 2 DR L1/L2 Metric
ge-1/0/7.0 1 0x1 1720.1600.1004.02 Disabled 10/10
ge-1/1/5.0 2 0x2 Disabled 1720.1600.1003.02 10/10
lo0.2 0 0x1 Passive Passive 0/0
lab@mxA-1>
Step 1.7
Use the show isis interface instance R5-Y and show isis
adjacency instance R5-Y commands to verify the state of the new extended
IS-IS topology in the R5-Y routing instance.
lab@mxA-1> show isis interface instance R5-Y
IS-IS interface database:
lab@mxA-1>
In this lab part, you examine the default flooding scope of a multilevel IS-IS topology
and then modify that default flooding scope. The IS-IS multilevel topology supports
multiple IS-IS databases, a Level 1 database and a Level 2 database. Because the
R3-Y and R4-Y routing instances have interfaces connected to both a Level 1 and
Level 2, they have both databases. Information that is passed between these
databases is known as the IS-IS flooding scope. IS-IS, by default, floods all Level 1
internal information into the Level 2 database but not Level 2 internal information
into the Level 1 database. Also, by default, IS-IS does not flood any external
information between either database.
Step 2.1
The default routing instance only has IS-IS Level 2 adjacencies. Use the show
route 172.16/16 table inet.0 command to display all active loopback
addresses in the Level 2 database.
lab@mxA-1> show route 172.16/16 table inet.0
lab@mxA-1>
Step 2.2
The R5-Y routing instance only has IS-IS Level 1 adjacencies. Use the show route
172.16/16 table R5-Y.inet.0 command to display all active loopback
address in the Level 1 database.
lab@mxA-1> show route 172.16/16 table R5-Y.inet.0
lab@mxA-1>
Step 2.3
Because the internal Level 2 IS-IS routes are not leaked into the Level 1 database,
access from the R5-Y router to the Level 2 routes requires a default route. Use the
show route 0/0 exact table R5-Y.inet.0 command to display the
active default route in the R5-Y routing table.
lab@mxA-1> show route 0/0 exact table R5-Y.inet.0
lab@mxA-1>
Step 2.4
All L1/L2 attached routers enable the attach bit on their Level 1 LSP if the Level 2
adjacency is in a different IS-IS area. Display the Level 1 database using the show
isis database level 1 instance R5-Y command.
lab@mxA-1> show isis database level 1 instance R5-Y
IS-IS level 1 link-state database:
LSP ID Sequence Checksum Lifetime Attributes
1720.1600.1002.00-00 0x18 0x9be2 1030 L1 L2 Attached
lab@mxA-1>
lab@mxA-1>
lab@mxA-1>
Step 2.7
Display the RIP routes in the default routing table using the show route
20.20/22 table inet.0 command.
lab@mxA-1>
The default IS-IS flooding scope can be modified using routing policy. Because the
R3-Y and R4-Y routing instances provide connectivity to both the Level 1 and Level 2
databases, export policy can be applied to the IS-IS protocol to direct routes into a
specific database. In this lab, you write and apply IS-IS export policy in the R3-Y and
R4-Y routing instances to change the default IS-IS flooding scope.
Step 3.1
IS-IS Level 1 internal routes are redistributed into the Level 2 database by default.
Use the show route 10.0.1W.0/23 table inet.0 command to display the
Level 1 interface routes connected to the R5-Y router in the default routing table.
Variable W will be 2 for mxX-1 and 6 for mxX-2.
lab@mxA-1> show route 10.0.1W.0/23 table inet.0
lab@mxA-1>
Step 3.2
Enter configuration mode and navigate to the [edit routing-instances
R3-Y routing-options] hierarchy. Configure a 10.0.1W.0/23 aggregate route
in the R3-Y routing instance. Variable W will be 2 for mxX-1 and 6 for mxX-2.
lab@mxA-1> configure
Entering configuration mode
[edit]
lab@mxA-1# edit routing-instances R3-Y routing-options
Step 3.8
Navigate to the [edit policy-options policy-statement
rip-to-level-2] hierarchy. Configure the rip-to-level-2 policy to accept
all routes more specific than 20.20.0.0/22 into the Level 2 database.
[edit routing-instances R4-1 protocols isis]
lab@mxA-1# top edit policy-options policy-statement rip-to-level-2
Step 3.12
Navigate to the [edit policy-options policy-statement
level2-to-level1] hierarchy. Configure the level2-to-level1 policy to
accept all IS-IS Level 2 routes into Level 1.
[edit routing-instances R4-1 protocols isis]
lab@mxA-1# top edit policy-options policy-statement level2-to-level1
lab@mxA-1>
Step 3.15
Verify that the IS-IS Level 2 routes have been leaked into the IS-IS Level 1 database
and installed in the R5-Y routing table. Use the show route 172.16/16 table
R5-Y.inet.0 command to display the routes in the R5-Y routing table.
lab@mxA-1> show route 172.16/16 table R5-Y.inet.0
lab@mxA-1>
Step 3.16
Use the show isis database level 1 instance R3-Y command to
locate the R3-Y LSP-ID in the Level 1 IS-IS database.
lab@mxA-1> show isis database level 1 instance R3-Y
IS-IS level 1 link-state database:
LSP ID Sequence Checksum Lifetime Attributes
1720.1600.1002.00-00 0x1f 0x2032 1038 L1 L2 Attached
1720.1600.1003.00-00 0x19 0xec6a 1038 L1 L2 Attached
1720.1600.1004.00-00 0x1a 0x619c 1040 L1 L2
1720.1600.1004.02-00 0xb 0xbe04 1040 L1 L2
1720.1600.1004.03-00 0xb 0x7152 1040 L1 L2
5 LSPs
lab@mxA-1>
lab@mxA-1>
Step 3.18
Log out of your assigned device using the exit command.
lab@mxA-1> exit
Overview
In this lab, you will use the lab diagram titled “Lab 7-9: BGP and BGP Attributes” to
establish a BGP network. The student device is divided into two routing instances running
OSPF. After verifying the OSPF Area 0.0.0.0 adjacency, an IBGP session must be
established between the default routing instance and the R3 routing instance. The P1
and P2 routers are in AS 65412, and the P3 router is in AS 65020. You must establish
EBGP peering sessions to all three of the routers. The P3 EBGP peering session will peer
to the loopback addresses.
This lab will require the configuration of both internal and EBGP peering sessions.
By completing this lab, you will perform the following tasks:
• Load the default configuration.
• Establish an IBGP peering session.
• Establish an EBGP peering session with multipath.
• Establish an EBGP peering session with multihop.
• Use policy to summarize IBGP routes.
Note
The lab topology requires you to display
information in the different virtual routing
instances. When referencing the routing
instance, the commands include the
routing instance name, R3-Y, where Y is
the user number (1 or 2). Refer to the lab
diagram for the correct instance and user
number.
When performing network commands such
as ping or traceroute within the
routing instance, the
routing-instance R3-Y switch must
be used to consult the appropriate virtual
instance. When performing show
commands, the instance R3-Y or
table R3-Y switch must be used to
display the appropriate adjacencies or
routing tables.
In this lab part, you load the Lab 7 reset configuration and establish an OSPF
adjacency between the default routing instance and the R3 routing instance.
Step 1.1
Access the CLI on your student device using either the console, Telnet, or SSH as
directed by your instructor. Refer to the management network diagram for the IP
address associated with your student device. The following example demonstrates a
simple Telnet session with the Secure CRT program as a basis:
Step 1.2
Log in to the router with the username lab using a password of lab123. Note that
both the name and password are case-sensitive.
login: lab
Password:
[edit]
lab@mxA-1# load override ajspr/lab7-start.config
load complete
[edit]
lab@mxA-1# commit and-quit
commit complete
Exiting configuration mode
lab@mxA-1>
Step 1.4
Use the show ospf interface command to verify that the interfaces are
running OSPF.
lab@mxA-1> show ospf interface
Interface State Area DR ID BDR ID Nbrs
ge-1/0/4.0 BDR 0.0.0.0 172.16.1.2 172.16.1.1 1
lo0.0 DR 0.0.0.0 172.16.1.1 0.0.0.0 0
lab@mxA-1>
Step 1.5
Use the show ospf neighbor command to verify that the default routing
instance has an adjacency with the R3 instance.
lab@mxA-1>
Step 1.6
Variable references are used throughout this lab to distinguish various parts of
command-line interface (CLI) input.
1. Variable R will be 1 or 2 but will indicate a value from your remote team’s
devices. Just remember “R for Remote.”
2. Variable V indicates the last number of the VLAN value on the links
connecting to the P1, P2 and P3 routers. On the mxX-1 side, the value will
be 1, 3 or 5. On the mxX-2 device, the value will be 2, 4 or 6. Just
remember “V for VLAN.”
3. Variable X indicates the pod letter: A, B, C, or D.
4. Variable Y will be a 1 or 2 depending on which student device you have
been assigned within your pod. Just remember “Y for Yours.”
5. Variable Z will be either 1, 2, 3, or 4 depending upon which pod you have
been assigned (A = 1, B = 2, C = 3, and D = 4).
Use the ping utility to verify reachability to the directly connected interfaces of the
P1, P2, and P3 routers. Remember to use the routing-instance command for
the P3 device.
lab@mxA-1> ping 172.22.12V.2 rapid count 10
PING 172.22.121.2 (172.22.121.2): 56 data bytes
!!!!!!!!!!
--- 172.22.121.2 ping statistics ---
10 packets transmitted, 10 packets received, 0% packet loss
round-trip min/avg/max/stddev = 0.419/0.440/0.590/0.050 ms
lab@mxA-1>
Step 1.7
Use the show route table inet.0 command to display the default routing
table.
lab@mxA-1> show route table inet.0
lab@mxA-1>
In this lab part, you configure the Internal BGP (IBGP) session between the default
routing instance and the R3-Y routing instance. The IBGP session should use
loopback addresses for peering between the two instances. After configuring the
IBGP group, verify that the session is established and redistribute the two static
routes configured in the [edit routing-options] hierarchy.
Step 2.1
The autonomous system (AS) number must be configured in both routing instances.
Enter configuration mode, navigate to the [edit routing-options] and
configure the AS number 6500Y for the default routing instance.
lab@mxA-1> configure
Entering configuration mode
[edit]
lab@mxA-1# edit routing-options
[edit routing-options]
lab@mxA-1# set autonomous-system 6500Y
[edit routing-options]
lab@mxA-1#
Step 2.2
Navigate to the [edit routing-instances R3-Y routing-options]
hierarchy and configure the same AS number for the R3-Y routing instance.
[edit routing-options]
lab@mxA-1# top edit routing-instances R3-Y routing-options
Step 2.6
Locate the two static routes in the each of the routing instances using the run
show route protocol static command.
[edit routing-instances R3-1 protocols bgp]
lab@mxA-1# run show route protocol static
In this lab part, you configure two EBGP peers to the P1 and P2 routers. These
devices are both in AS 65412.
Step 3.1
Navigate to the [edit protocols bgp] hierarchy. Configure a BGP group
named P1-P2 that establishes an EBGP peering session with the directly
connected interfaces of the P1 and P2 routers. Refer to the network diagram for this
lab as necessary. Commit the configuration when completed.
[edit routing-instances R3-1 protocols bgp]
lab@mxA-1# top edit protocols bgp
Step 3.3
The BGP neighbor command has a lot of valuable information. Use the run
show bgp neighbor 172.22.12V.2 command to view the P1 EBGP peer.
[edit protocols bgp]
lab@mxA-1# run show bgp neighbor 172.22.12V.2
Peer: 172.22.121.2+53546 AS 65412 Local: 172.22.121.1+179 AS 65001
Type: External State: Established Flags: <Sync>
Last State: OpenConfirm Last Event: RecvKeepAlive
Last Error: None
Options: <Preference PeerAS Refresh>
Holdtime: 90 Preference: 170
Number of flaps: 0
Peer ID: 172.31.100.1 Local ID: 172.16.1.1 Active Holdtime: 90
Keepalive Interval: 30 Peer index: 0
BFD: disabled, down
Local Interface: ge-1/0/0.1111
NLRI for restart configured on peer: inet-unicast
NLRI advertised by peer: inet-unicast
NLRI for this session: inet-unicast
Peer supports Refresh capability (2)
www.juniper.net BGP (Detailed) • Lab 7–11
Advanced Junos Service Provider Routing
Restart time configured on the peer: 120
Stale routes from peer are kept for: 300
Restart time requested by this peer: 120
NLRI that peer supports restart for: inet-unicast
NLRI that restart is negotiated for: inet-unicast
NLRI of received end-of-rib markers: inet-unicast
NLRI of all end-of-rib markers sent: inet-unicast
Peer supports 4 byte AS extension (peer-as 65412)
Peer does not support Addpath
Table inet.0 Bit: 10001
RIB State: BGP restart is complete
Send state: in sync
Active prefixes: 6
Received prefixes: 6
Accepted prefixes: 6
Suppressed due to damping: 0
Advertised prefixes: 2
Last traffic (seconds): Received 16 Sent 21 Checked 37
Input messages: Total 9 Updates 3 Refreshes 0 Octets 293
Output messages: Total 8 Updates 1 Refreshes 0 Octets 249
Output Queue[0]: 0
Step 3.4
Use the run show route receive-protocol bgp 172.22.12V.2
command to view the routes being received from the P1 and P2 routers. Refer to the
network diagram for this step as necessary.
Step 3.5
Display the 30.30.0.0/24 route using the run show route 30.30/24 detail
command.
Step 3.8
Use the run show route forwarding-table destination
30.30.0.0/24 command to view the packet forwarding table.
[edit protocols bgp]
lab@mxA-1# run show route forwarding-table destination 30.30.0.0/24
Routing table: default.inet
Internet:
Destination Type RtRef Next hop Type Index NhRef Netif
30.30.0.0/24 user 0 172.22.123.2 ucst 673 6 ge-1/0/0.1113
Step 3.9
Navigate to the [edit policy-options policy-statement
pfe-load-balance] hierarchy. Create a policy named pfe-load-balance
that only load balances the 30.30/22 routes being received from the P1 and P2
routers as displayed in Step 3.4.
[edit protocols bgp]
lab@mxA-1# top edit policy-options policy-statement pfe-load-balance
In this lab part, you configure the R3-Y routing instance to EBGP peer with the P3
router. The peering is between the loopback interfaces of R3-Y and P3. EBGP
loopback peering is a three step process. Because the external interfaces are not
participating in the IGP, the first step requires a static route to the P3 loopback
address. The second step requires configuring the local loopback as the source
address of the BGP messages sent to the P3 router. Finally, the BGP multihop
command is configured to override the physical connection requirement normally
imposed of EBGP sessions.
Step 4.1
Navigate to the [edit routing-instances R3-Y routing-options]
hierarchy. Configure a static route to P3’s loopback address (172.31.102.1) with a
next hop of 172.22.12V.2. Use the no-readvertise setting to ensure that the
route can not be redistributed into other protocols and commit the configuration
when completed.
[edit routing-options forwarding-table]
lab@mxA-1# top edit routing-instances R3-Y routing-options
Step 4.3
Navigate to the [edit routing-instances R3-Y protocols bgp]
hierarchy. Configure a BGP group named P3. Configure the P3 loopback address as
the peer and the R3-Y loopback address as the local-address. The peer-as is
65020. Commit the configuration when completed.
[edit routing-instances R3-1 routing-options]
lab@mxA-1# up 1 edit protocols bgp
Step 4.5
To relax the EBGP requirement of physical interface peering and make it possible to
EBGP peer between loopback addresses, apply the multihop statement to the P3
BGP group. Commit the change when completed.
[edit routing-instances R3-1 protocols bgp]
lab@mxA-1# set group P3 multihop
Step 4.7
Now that the P3 peering session is established, use the run show route
receive-protocol bgp 172.31.102.1 command to view the routes being
received from the P3 router.
[edit routing-instances R3-1 protocols bgp]
lab@mxA-1# run show route receive-protocol bgp 172.31.102.1
In this lab part, you must create an aggregate route for the internal redistributed
static routes. The mxX-1 aggregate route is 172.16.1.0/24 and the mxX-2 aggregate
route is 172.16.2.0/24 for both the default and R3-Y routing instances. Because the
IBGP routes are advertised to the EBGP peers by default, an export EBGP routing
policy is required to advertise the aggregate route and suppress the specific routes.
Lab 7–22 • BGP (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Step 5.1
Enter configuration mode and navigate to the [edit routing-options]
hierarchy. Configure the aggregate route 172.16.Y.0/24.
[edit routing-instances R3-1 protocols bgp]
lab@mxA-1# top edit routing-options
[edit routing-options]
lab@mxA-1# set aggregate route 172.16.Y.0/24
[edit routing-options]
lab@mxA-1#
Step 5.2
Configure the same aggregate route in the [edit routing-instances R3-Y
routing-options] hierarchy.
[edit routing-options]
lab@mxA-1# top edit routing-instances R3-Y routing-options
lab@mxA-1>
Step 5.6
Using the show route advertising-protocol bgp 172.22.12V.2
command, substitute each of the P1 and P2 neighbor’s IP addresses to view the
routes being advertised to each of the peer routers. Use the show route
advertising-protocol bgp 172.31.102.1 command for the P3 router.
lab@mxA-1> show route advertising-protocol bgp 172.22.12V.2
lab@mxA-1>
Step 5.7
Log out of your assigned device using the exit command.
lab@mxA-1> exit
Overview
In this lab, you will use the lab diagram titled "Lab 7-9: BGP and BGP Attributes" to repair
unusable routes and influence the BGP route selection process. This lab will utilize the
internal Border Gateway Protocol (IBGP) and EBGP peering that was established in Lab 7
which contains "hidden" or unusable routes. Once these routes have been repaired with
an IBGP export policy, the routes will be advertised to the P1 and P2 routers using the
origin, multiple exit discriminator (MED), and AS-path attributes.
By completing this lab you will perform the following tasks:
• Repair the unusable routes.
• Influence routing using the Origin attribute.
• Influence routing using the MED attribute.
• Influence routing using the AS-path attribute.
• Use policy with AS Path regex expressions.
Note
The lab topology requires you to display
information in the different virtual routing
instances. When referencing the routing
instance, the commands include the
routing instance name, R3-Y, where Y is
the user number (1 or 2). Refer to the lab
diagram for the correct instance and user
number.
When performing network commands such
as ping or traceroute within the
routing instance, the
routing-instance R3-Y switch must
be used to consult the appropriate virtual
instance. When performing show
commands, the instance R3-Y or
table R3-Y switch must be used to
display the appropriate adjacencies or
routing tables.
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–1
11.a.11.4R1.14
Advanced Junos Service Provider Routing
In this lab part, you will identify unusable routes using the show route hidden
command. After analyzing the hidden routes, and discovering the reason they are
unusable, you will write an IBGP export policy to change the next-hop attribute. After
applying the IBGP export policy, you will verify that the routes are now active and
usable.
Step 1.1
Access the command-line interface (CLI) on your student device using either the
console, Telnet, or SSH as directed by your instructor. Refer to the management
network diagram for the IP address associated with your student device. The
following example demonstrates a simple Telnet session with the Secure CRT
program as a basis:
Step 1.2
Log in to the router with the username lab using a password of lab123. Note that
both the name and password are case-sensitive.
mxA-1 (ttyu0)
login: lab
Password:
[edit]
lab@mxA-1# load override ajspr/lab8-start.config
load complete
[edit]
Lab 8–2 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
lab@mxA-1# commit and-quit
commit complete
Exiting configuration mode
lab@mxA-1>
Step 1.4
Use the show route hidden table inet.0 command to identify the
unusable routes in the default routing table.
lab@mxA-1> show route hidden table inet.0
inet.0: 25 destinations, 31 routes (21 active, 0 holddown, 5 hidden)
+ = Active Route, - = Last Active, * = Both
lab@mxA-1>
Step 1.5
Use the show route 40.40.0.0/24 hidden extensive command to
display more information about the hidden routes.
lab@mxA-1> show route 40.40.0.0/24 hidden extensive
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–3
Advanced Junos Service Provider Routing
State: <Hidden Int Ext>
Local AS: 65001 Peer AS: 65001
Age: 16:58
Task: BGP_65001.172.16.1.2+179
AS path: 65020 I
Accepted
Localpref: 100
Router ID: 172.16.1.2
Indirect next hops: 1
Protocol next hop: 172.31.102.1
Indirect next hop: 0 -
lab@mxA-1>
Step 1.6
In the BGP route selection process, the BGP next-hop attribute must be resolved in
the default routing table. Use the show route 172.31.102.1 table
inet.0 command to verify that the protocol next-hop can be resolved.
lab@mxA-1> show route 172.31.102.1 table inet.0
lab@mxA-1>
Lab 8–4 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Step 1.7
An IBGP export policy needs to be created to modify the attribute to something that
can be resolved in the default routing table. Enter configuration mode and navigate
to the [edit policy-options policy-statement next-hop-self]
hierarchy. In the policy, change the next-hop attribute to the loopback address of the
IBGP advertising peer. Ensure that you only change the next-hop attribute if the
route is a BGP external route.
lab@mxA-1> configure
Entering configuration mode
[edit]
lab@mxA-1# edit policy-options policy-statement next-hop-self
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–5
Advanced Junos Service Provider Routing
5. Variable Z will be either 1, 2, 3, or 4 depending upon which pod you have
been assigned (A = 1, B = 2, C = 3, and D = 4).
Navigate to the [edit routing-instances R3-Y protocols bgp]
hierarchy and apply the next-hop-self export policy in the ibgp group.
Because the hidden routes in the default routing table are being advertised from the
R3-Y routing instance, the IBGP export policy must be applied in the R3-Y routing
instance. Commit the changes when completed.
[edit policy-options policy-statement next-hop-self]
lab@mxA-1# top edit routing-instances R3-Y protocols bgp
Step 1.10
Navigate to the [edit protocols bgp] hierarchy. Apply the next-hop-self
export policy to the ibgp group in the default routing instance. Commit the changes
when completed.
[edit routing-instances R3-1 protocols bgp]
lab@mxA-1# top edit protocols bgp
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–7
Advanced Junos Service Provider Routing
Question: Are all of the hidden routes gone from all
of the routing tables?
In this lab part, you will modify the origin attribute. The BGP origin attribute is a well
known mandatory attribute used in the route selection processes. It has three
possible values, IGP (I), EGP (E) or incomplete (?). In the route
selection process IGP is preferred over EGP and EGP is preferred over incomplete.
Using import policy to change the BGP origin, routes can be influenced to prefer a
specific peering session. Because the attribute is a transitive attribute, it can also be
used in an export policy to influence traffic in to the AS.
Step 2.1
Because the BGP origin attribute can influence traffic, removing the multipath
command from the BGP group P1-P2 will be necessary. Doing so will allow the
routes being received from P1 and P2 to choose a single path to AS 65412. Delete
the multipath option. Commit the change when completed.
[edit protocols bgp]
lab@mxA-1# delete group P1-P2 multipath
Lab 8–8 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
R3-1.inet.0: 22 destinations, 23 routes (22 active, 0 holddown, 0 hidden)
Step 2.3
Use the run show route 172.16.R.0/24 table inet.0 detail
command to display your partner’s summary route in the default routing instance.
[edit protocols bgp]
lab@mxA-1# run show route 172.16.R.0/24 table inet.0 detail
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–9
Advanced Junos Service Provider Routing
Local AS: 65001 Peer AS: 65412
Age: 19:41
Task: BGP_65412.172.22.121.2+53546
Announcement bits (3): 0-KRT 6-BGP RT Background 7-Resolve tree 5
AS path: 65412 65002 I Aggregator: 65002 172.16.2.1
Accepted
Localpref: 100
Router ID: 172.31.100.1
BGP Preference: 170/-101
Next hop type: Router
Address: 0x282ff80
Next-hop reference count: 5
Source: 172.22.123.2
Next hop: 172.22.123.2 via ge-1/0/0.1113, selected
State: <NotBest Ext>
Inactive reason: Not Best in its group - Active preferred
Local AS: 65001 Peer AS: 65412
Age: 16
Task: BGP_65412.172.22.123.2+58753
AS path: 65412 65002 I Aggregator: 65002 172.16.2.1
Accepted
Localpref: 100
Router ID: 172.31.101.1
BGP Preference: 170/-101
Next hop type: Indirect
Address: 0x282f8f8
Next-hop reference count: 19
Source: 172.16.1.2
Next hop type: Router, Next hop index: 741
Next hop: 10.0.10.2 via ge-1/0/4.0, selected
Protocol next hop: 172.16.1.2
Indirect next hop: 29152d0 1048575
State: <Int Ext>
Inactive reason: Interior > Exterior > Exterior via Interior
Local AS: 65001 Peer AS: 65001
Age: 7:17 Metric2: 1
Task: BGP_65001.172.16.1.2+179
AS path: 65020 65002 I Aggregator: 65002 172.16.2.2
Accepted
Localpref: 100
Router ID: 172.16.1.2
Lab 8–10 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Question: Which peer is being preferred to activate
the route?
Step 2.4
Navigate to the [edit policy-options policy-statement
P1-P2-import] hierarchy. Write the import policy to change the origin to egp
on the summary route being received from P1 and P2.
[edit protocols bgp]
lab@mxA-1# top edit policy-options policy-statement P1-P2-import
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–11
Advanced Junos Service Provider Routing
lab@mxA-1# commit
commit complete
Lab 8–12 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Inactive reason: Not Best in its group - Router ID
Local AS: 65001 Peer AS: 65412
Age: 5:30
Task: BGP_65412.172.22.123.2+58753
AS path: 65412 65002 E Aggregator: 65002 172.16.2.1
Accepted
Localpref: 100
Router ID: 172.31.101.1
Step 2.7
Remove the import policy from the P1-P2 group. Commit the change and return to
operational mode.
[edit protocols bgp]
lab@mxA-1# delete group P1-P2 import
lab@mxA-1>
Step 2.8
Use the operational mode command show route 172.16.R.0/24 table
inet.0 to verify that the route again prefers one of the P1 or P2 peers in the
default routing instance.
lab@mxA-1> show route 172.16.R.0 table inet.0
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–13
Advanced Junos Service Provider Routing
AS path: 65020 65002 I
> to 10.0.10.2 via ge-1/0/4.0
lab@mxA-1>
In this lab part, you will configure the MED attribute. The MED is an optional
nontransitive attribute used to influence traffic coming into your AS. It is a route
metric assigned to BGP and advertised to a remote peer to influence the remote
peer's route selection process. In this part, you will use a MED to influence the
AS 65412 to always use P2 to route traffic to your summary address.
Step 3.1
Refer to the Management Network Diagram and determine the management IP
address of the vr-device.
Step 3.2
Using the management IP address identified in the previous step, open a separate
Telnet session to the vr-device.
Lab 8–14 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Step 3.3
Log in to the vr-device using the login details shown in the following table:
Login Details
vr-device (ttyp2)
login: username
Password:lab123
NOTE: This router is divided into many virtual routers used by different teams.
Please only configure your own virtual router.
vr1@vr-device>
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–15
Advanced Junos Service Provider Routing
Step 3.4
On the vr-device, use the show route 172.16.Y.0/24 exact table
ajspr-mxX-labs-p1.inet.0 and show route 172.16.Y.0/24 exact
table ajspr-mxX-labs-p2.inet.0 commands to display the paths of your
summary route into your AS 6500Y from the perspective of both the P1 and P2
routers. Because you are now viewing the routes from the perspective of the the
vr-device, refer to the lab diagram to determine which interfaces you’re working with.
vr1@vr-device> show route 172.16.Y.0/24 exact table ajspr-mxX-labs-p1.inet.0
vr1@vr-device>
Step 3.5
From the Telnet session to your assigned student device, enter configuration mode
and navigate to the [edit protocols bgp] hierarchy. Set the metric-out
value to 10 on the P1 neighbor. Commit the configuration when completed.
Lab 8–16 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
lab@mxA-1> configure
Entering configuration mode
[edit]
lab@mxA-1# edit protocols bgp
STOP Stop and wait for the remote student team to finish the previous step.
Step 3.6
On the vr-device, use the show route 172.16.Y.0/24 exact table
ajspr-mxX-labs-p1.inet.0 and show route 172.16.Y.0/24 exact
table ajspr-mxX-labs-p2.inet.0 commands to display the paths of your
summary route into your AS 6500Y from the perspective of both the P1 and P2
routers. Again, because you are now viewing the routes from the perspective of the
the vr-device, refer to the lab diagram to determine the interfaces with which you are
working.
vr1@vr-device> show route 172.16.Y.0/24 exact table ajspr-mxX-labs-p1.inet.0
vr1@vr-device>
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–17
Advanced Junos Service Provider Routing
Question: After the MED change, what is the
preferred path of your summary route, into your AS,
from each of the P1 and P2 routers?
[edit policy-options]
lab@mxA-1# copy policy-statement export-aggregate to policy-statement export-p2
[edit policy-options]
lab@mxA-1# show policy-statement export-p2
term 1 {
from {
protocol aggregate;
route-filter 172.16.1.0/24 exact;
}
then accept;
}
term 2 {
from {
route-filter 172.16.1.0/24 longer;
}
then reject;
}
[edit policy-options]
lab@mxA-1#
Lab 8–18 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Step 3.8
Navigate to the [edit policy-options policy-statement export-p2]
hierarchy. Set the metric to 20 in term 1 before accepting the summary route.
[edit policy-options]
lab@mxA-1# edit policy-statement export-p2
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–19
Advanced Junos Service Provider Routing
> to 172.22.252.1 via ge-1/0/9.1194
[BGP/170] 00:00:43, MED 20, localpref 100
AS path: 65001 I
> to 172.22.123.1 via ge-1/0/0.1113
vr1@vr-device>
Step 3.11
Log out of the vr-device.
vr1@vr-device> exit
In this lab part, you will modify the AS Path attribute. The AS Path attribute is a
mandatory well-known attribute that must be included in every BGP update. The
attribute is modified as routes are advertised between EBGP peers. The AS number
of the advertising peer is prepended to the beginning of the attribute before it is
advertised to the peer. If a BGP update is received from a peer and the AS number of
the receiving peer is in the attribute, the update is considered a loop and discarded.
The AS Path attribute is also used in the route selection process, the shortest path
length is preferred.
Step 4.1
Remove the metric from the P1 neighbor and the export policy from the P2 neighbor.
Commit the changes when completed.
[edit protocols bgp group P1-P2]
lab@mxA-1# delete neighbor 172.22.12V.2 metric-out
Lab 8–20 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
neighbor 172.22.123.2;
Step 4.3
Log in to the router with the username lab using a password of lab123. Note that
both the name and password are case-sensitive.
mxA-1 (ttyu0)
login: lab
Password:
mxA-2 (ttyp1)
login: lab
Password:
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–21
Advanced Junos Service Provider Routing
lab@mxA-2>
Step 4.6
From the Telnet session to your assigned student device, navigate to the [edit
policy-options] hierarchy. Copy the export-aggregate policy to a new
policy named export-p3 and display the new policy with the show
policy-statement export-p3 command.
[edit protocols bgp group P1-P2]
lab@mxA-1# top edit policy-options
Lab 8–22 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
[edit policy-options]
lab@mxA-1# copy policy-statement export-aggregate to policy-statement export-p3
[edit policy-options]
lab@mxA-1# show policy-statement export-p3
term 1 {
from {
protocol aggregate;
route-filter 172.16.1.0/24 exact;
}
then accept;
}
term 2 {
from {
route-filter 172.16.1.0/24 longer;
}
then reject;
}
[edit policy-options]
lab@mxA-1#
Step 4.7
Navigate to the [edit policy-options policy-statement export-p3]
hierarchy. Using the as-path-prepend option, insert your partner’s AS number
in to the AS Path.
[edit policy-options]
lab@mxA-1# edit policy-statement export-p3
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–23
Advanced Junos Service Provider Routing
Step 4.9
From the Telnet session to your partner’s device, use the show route
172.16.Y.0/24 table inet.0 command to display the path of your summary
route in the default routing instance.
lab@mxA-2> show route 172.16.Y.0/24 table inet.0
lab@mxA-2>
Step 4.10
From the Telnet session to your assigned device, navigate to the [edit
policy-options policy-statement export-aggregate] hierarchy.
Display the policy with the show command. Using the as-path-prepend
command insert your AS number three times in to the AS path before accepting the
summary route. Commit the changes when completed.
[edit routing-instances R3-1 protocols bgp]
lab@mxA-1# top edit policy-options policy-statement export-aggregate
Lab 8–24 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
}
lab@mxA-2>
Step 4.12
From the Telnet session to your assigned device, navigate to the [edit
policy-options policy-statement export-p3] hierarchy. Display the
policy using the show command and delete the as-path-prepend option.
Commit the change when completed.
[edit policy-options policy-statement export-aggregate]
lab@mxA-1# up 1 edit policy-statement export-p3
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–25
Advanced Junos Service Provider Routing
term 1 {
from {
protocol aggregate;
route-filter 172.16.1.0/24 exact;
}
then {
as-path-prepend 65002;
accept;
}
}
term 2 {
from {
route-filter 172.16.1.0/24 longer;
}
then reject;
}
lab@mxA-2>
Lab 8–26 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Step 4.14
Log out of the Telnet session to your partner’s device. You will not need it anymore
during this lab. All future commands will be entered on your assigned student
device.
lab@mxA-2> exit
lab@mxA-1> exit
Step 4.15
Navigate to the [edit policy-options policy-statement
export-aggregate] hierarchy. Display the policy using the show command and
delete the as-path-prepend statement. Commit the change when completed.
[edit policy-options policy-statement export-p3]
lab@mxA-1# up 1 edit policy-statement export-aggregate
Step 4.16
Use the run show route receive-protocol bgp 172.22.12V.2
command to display the routes being received from the P1 router.
[edit policy-options policy-statement export-aggregate]
lab@mxA-1# run show route receive-protocol bgp 172.22.12V.2
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–27
Advanced Junos Service Provider Routing
Step 4.17
Use a regular expression in the run show route receive-protocol bgp
172.22.12V.2 aspath-regex “.* 6500R” command to only display routes
that originate in your partner’s autonomous system. Use the P1 neighbor.
[edit policy-options policy-statement export-aggregate]
lab@mxA-1# run show route receive-protocol bgp 172.22.12V.2 aspath-regex ".*
6500R"
Lab 8–28 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Step 4.18
Using regular expressions, create a BGP import policy to only accept your partner’s
summary route from the P1 peer. Navigate to the [edit policy-options]
hierarchy. Create an as-path named partner-as to match on all routes that
originate in your partner’s autonomous system.
[edit policy-options policy-statement export-aggregate]
lab@mxA-1# up
[edit policy-options]
lab@mxA-1# set as-path partner-as ".* 6500R"
[edit policy-options]
lab@mxA-1#
Step 4.19
Navigate to the [edit policy-options policy-statement import-P1]
hierarchy. Create a policy, using the as-path you just created, which accepts only
routes that originate in your partner’s autonomous system.
[edit policy-options]
lab@mxA-1# edit policy-statement import-P1
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–29
Advanced Junos Service Provider Routing
Step 4.21
Use the run show route receive-protocol bgp 172.22.12V.2
command to display the routes being received from P1.
[edit protocols bgp group P1-P2]
lab@mxA-1# run show route receive-protocol bgp 172.22.12V.2
Step 4.22
Use the command run show route advertising-protocol bgp
172.22.12V.2 to display the routes being advertised to the P1 peer.
[edit protocols bgp group P1-P2]
lab@mxA-1# run show route advertising-protocol bgp 172.22.12V.2
Lab 8–30 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Question: How many routes are being advertised to
the P1 peer?
Step 4.23
Navigate to the [edit routing-instances R3-Y] hierarchy. Configure a
static route of 172.16.10.0/24 in the R3-Y routing instance with a next-hop of
reject. Commit the configuration when completed.
[edit protocols bgp group P1-P2]
lab@mxA-1# top edit routing-instances R3-Y
[edit policy-options]
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–31
Advanced Junos Service Provider Routing
lab@mxA-1# set as-path internal-as "()"
[edit policy-options]
lab@mxA-1#
Step 4.26
Navigate to the [edit policy-options policy-statement
export-aggregate] hierarchy and display the policy using the show command.
Using the as-path configured in the previous step, create a new term to suppress
the internal BGP routes from being advertised to the P1 and P2 peers. Commit the
configuration and return to operational mode.
[edit policy-options]
lab@mxA-1# edit policy-statement export-aggregate
lab@mxA-1>
Step 4.27
Use regular expressions in the show route advertising-protocol bgp
172.22.12V.2 aspath-regex “()” command to only display routes that
originate in your autonomous system. Use the P1 neighbor.
lab@mxA-1> show route advertising-protocol bgp 172.22.12V.2 aspath-regex "()"
Lab 8–32 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Advanced Junos Service Provider Routing
Prefix Nexthop MED Lclpref AS path
* 172.16.1.0/24 Self I
lab@mxA-1>
Step 4.28
Log out of your assigned device using the exit command.
lab@mxA-1> exit
www.juniper.net BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) • Lab 8–33
Advanced Junos Service Provider Routing
Lab 8–34 • BGP Attributes: Next Hop, Origin, MED, and AS Path (Detailed) www.juniper.net
Lab 9
BGP Attributes: Local-Preference and Communities (Detailed)
Overview
In this lab, you will use the lab diagram titled "Lab 7-9: BGP and BGP Attributes" to
influence traffic leaving your autonomous system. The Local-Preference attribute will be
used in this lab to define a preferred exit point out of your AS for routes being received
from AS 65412. In addition, you will use communities to tag the routes being received
from the P1, P2, and P3 routers.
By completing this lab you will perform the following tasks:
• Load the starting configuration
• Influence routing using the Local-Preference attribute.
• Use communities to tag routes.
• Influence routing by matching specific communities.
Note
The lab topology requires you to display
information in the different virtual routing
instances. When referencing the routing
instance, the commands include the
routing instance name, R3-Y, where Y is
the user number (1 or 2). Refer to the lab
diagram for the correct instance and user
number.
When performing network commands such
as ping or traceroute within the
routing instance, the
routing-instance R3-Y switch must
be used to consult the appropriate virtual
instance. When performing show
commands, the instance R3-Y or
table R3-Y switch must be used to
display the appropriate adjacencies or
routing tables.
In this lab part, you will load the Lab 9 reset file and use the local-preference
attribute to change the routing behavior within your local autonomous system.
Step 1.1
Access the CLI on your student device using either the console, Telnet, or SSH as
directed by your instructor. Refer to the management network diagram for the IP
address associated with your student device. The following example demonstrates a
simple Telnet session with the Secure CRT program as a basis:
Step 1.2
Log in to the router with the username lab using a password of lab123. Note that
both the name and password are case-sensitive.
mxA-1 (ttyu0)
login: lab
Password:
[edit]
lab@mxA-1# load override ajspr/lab9-start.config
load complete
[edit]
lab@mxA-1# commit and-quit
commit complete
Exiting configuration mode
lab@mxA-1>
lab@mxA-1>
Step 1.5
Enter configuration mode and navigate to the [edit policy-options
policy-statement import-p1] hierarchy. Configure the import-p1 policy
to set the local-preference on the summary route being received from the P1
router to 110. Ensure that the local-preference is only changed on the P1
neighbor. Use the show command to display the policy.
lab@mxA-1> configure
Entering configuration mode
[edit]
lab@mxA-1# edit policy-options policy-statement import-p1
Step 1.9
Navigate to the [edit policy-options policy-statement import-P3]
hierarchy. Configure the import-p3 policy to set the local-preference on the
summary route being received from the P3 router to 120. Ensure that the
local-preference is only changed on the P3 neighbor. Also, recall that the P3
neighbor is a multihop peer to the P3 loopback address. Use the show command to
display the policy.
[edit protocols bgp group P1-P2]
lab@mxA-1# top edit policy-options policy-statement import-p3
In this lab part, you will configure BGP communities. The community attribute is an
optional transitive attribute. An individual BGP process does not have to understand
the community attribute but it must advertise it to all established peers. The
community attribute is a 4-octet value in the format FFFF:FFFF. The first two octets
represent an autonomous system number and the second two octets represent a
locally defined value.
Communities can be used to simply to provide an administrative tag value to
associate specific routes with specific BGP peers. It can also be used to trigger
specific actions with an import routing policy. A route's community value can cause
specific routes to be accepted, rejected or modified.
Step 2.1
Navigate to the [edit policy-options] hierarchy. Define six communities as
shown in the table below. The community name should be the same as the member
value.
Name Value
65001:100 65001:100
65001:110 65001:110
65001:120 65001:120
65002:100 65002:100
65002:110 65002:110
65002:120 65002:120
[edit policy-options]
lab@mxA-1# set community 65001:100 members 65001:100
[edit policy-options]
lab@mxA-1# set community 65001:110 members 65001:110
[edit policy-options]
[edit policy-options]
lab@mxA-1# set community 65002:100 members 65002:100
[edit policy-options]
lab@mxA-1# set community 65002:110 members 65002:110
[edit policy-options]
lab@mxA-1# set community 65002:120 members 65002:120
[edit policy-options]
lab@mxA-1#
Step 2.2
Create two routing policies named export-p1 and export-p2 by using the copy
command to copy the export-aggregate policy into each of the new policies.
[edit policy-options]
lab@mxA-1# copy policy-statement export-aggregate to policy-statement export-p1
[edit policy-options]
lab@mxA-1# copy policy-statement export-aggregate to policy-statement export-p2
[edit policy-options]
lab@mxA-1#
Step 2.3
Navigate to the [edit policy-options policy-statement export-p1]
hierarchy and use the show command to display the policy. In term 1, set the
community with the 6500Y:100 community configured previously.
[edit policy-options]
lab@mxA-1# edit policy-statement export-p1
STOP Stop and wait until your partner has completed the previous step.
Step 2.7
Use the run show route 172.16.R.0/24 table inet.0 detail
command to display detailed information about your partner’s summary route in the
default routing instance.
[edit protocols bgp group P1-P2]
lab@mxA-1# run show route 172.16.R.0/24 table inet.0 detail
Step 2.8
Enter configuration mode and navigate to the [edit policy-options
policy-statement import-communities] hierarchy. Create a three term
policy. Each term should set the local-preference value based on the
community received from the P1, P2, and P3 routers that was set by your partner.
Using the community values received from your partner (use your partner’s AS
number), set the local-preference to the same value as the administrative
value (last two octets) of the community. Use the show command to display the
policy.
[edit protocols bgp group P1-P2]
lab@mxA-1# top edit policy-options policy-statement import-communities
lab@mxA-1>
Step 2.11
Use the show route 172.16.R.0/24 table inet.0 detail command to
display detail information about your partner’s summary route in the default routing
instance.
lab@mxA-1> show route 172.16.R.0/24 table inet.0 detail
lab@mxA-1>
Step 2.12
Use the show route 172.16.R.0/24 table R3-Y.inet.0 detail
command to display detail information about your partner’s summary route in the
default routing instance.
lab@mxA-1> show route 172.16.R.0/24 table R3-Y.inet.0 detail
lab@mxA-1>
Step 2.13
Log out of your assigned device using the exit command.
lab@mxA-1> exit
Overview
In this lab, you will use the lab diagrams titled “Lab 10: Scaling BGP Part 1” and
“Lab 10: Scaling BGP Part 2” to configure route reflectors and confederations. Within a
local autonomous system topology, the IBGP peers are fully meshed to prevent routing
loops from forming. A fully meshed network inherently has scalability issues which
includes the explicit configuration of all IBGP peer with the addition of a new router. Two
methods can alleviate the full mesh scaling issue and still ensure a loop-free BGP
topology. Route reflection and confederations provide a loop detection mechanism within
IBGP to allow IBGP routes to be readvertised to other IBGP peers.
By completing this lab, you will perform the following tasks:
• Load the extended topology.
• Configure route reflection.
• Examine the reflected routes.
• Configure confederations.
Note
The lab topology requires you to display
information in the different virtual routing
instances. When referencing the routing
instance, the commands include the
routing instance name, R3-Y, where Y is
the user number (1 or 2). Refer to the lab
diagram for the correct instance and user
number.
When performing network commands such
as ping or traceroute within the
routing instance, the
routing-instance R3-Y switch must
be used to consult the appropriate virtual
instance. When performing show
commands, the instance R3-Y or
table R3-Y switch must be used to
display the appropriate adjacencies or
routing tables.
In this lab part, you configure BGP route reflectors. A route reflector utilizes two new
BGP attributes. These attributes are never advertised outside the local autonomous
system and are used internally for IBGP loop detection. The cluster-list is the first
new BGP attribute and operates like the AS path attribute. It contains a list of 32-bit
cluster IDs for each cluster a particular route has transited. If a route reflector
detects its cluster ID in the cluster-list, it is considered a loop and the BGP update is
dropped. The second attribute is the originator ID, which defines the router that first
advertised the route to the route reflector. The route reflector uses the originator ID
as a second check against routing loops.
Step 1.1
Access the command-line interface (CLI) on your student device using either the
console, Telnet, or SSH as directed by your instructor. Refer to the management
network diagram for the IP address associated with your student device. The
following example demonstrates a simple Telnet session with the Secure CRT
program as a basis:
Step 1.2
Log in to the router with the username lab using a password of lab123. Note that
both the name and password are case-sensitive.
mxA-1 (ttyu0)
login: lab
Password:
[edit]
lab@mxA-1# load override ajspr/lab10-start.config
load complete
[edit]
lab@mxA-1# commit and-quit
commit complete
Exiting configuration mode
lab@mxA-1>
Step 1.4
Use the show ospf neighbor command to verify OSPF reachability from the
default router.
lab@mxA-1> show ospf neighbor
Address Interface State ID Pri Dead
10.0.10.2 ge-1/0/4.0 Full 172.16.1.2 128 36
10.0.11.2 ge-1/0/5.0 Full 172.16.1.3 128 30
lab@mxA-1>
www.juniper.net Scaling BGP (Detailed) • Lab 10–3
Advanced Junos Service Provider Routing
Question: Are the OSPF neighbor adjacencies
established between the default router and the
R3-Y and R4-Y routers?
Step 1.5
Use the show route protocol ospf to verify that the loopback addresses are
active in all four of the routing tables.
lab@mxA-1> show route protocol ospf
lab@mxA-1>
Step 1.6
Variable references are used throughout this lab to distinguish various parts of CLI
input.
1. Variable R will be 1 or 2 but will indicate a value from your remote team’s
devices. Just remember “R for Remote.”
2. Variable V indicates the last number of the VLAN value on the links
connecting to the P1, P2 and P3 routers. On the mxX-1 side, the value will
be 1, 3 or 5. On the mxX-2 device, the value will be 2, 4 or 6. Just
remember “V for VLAN.”
3. Variable X indicates the pod letter: A, B, C, or D.
4. Variable Y will be a 1 or 2 depending on which student device you have
been assigned within your pod. Just remember “Y for Yours.”
5. Variable Z will be either 1, 2, 3, or 4 depending upon which pod you have
been assigned (A = 1, B = 2, C = 3, and D = 4).
Enter configuration mode and navigate to the [edit protocols bgp group
rr-cluster] hierarchy. Configure the default router as a route reflector for the
internal BGP network, and configure the R3-Y, R4-Y, and R5-Y loopback addresses
as neighbors. Use your loopback address as the cluster ID and the local-address
within the route reflector group.
lab@mxA-1> configure
Entering configuration mode
[edit]
lab@mxA-1# edit protocols bgp group rr-cluster
Step 1.11
Use the run show route hidden table inet.0 command to check for any
unusable routes in the default routing table.
[edit routing-instances R5-1 protocols bgp group ibgp]
lab@mxA-1# run show route hidden table inet.0
Step 1.13
Use the run show route 40.40/24 hidden extensive to display the
extensive information and a possible cause for the route to be marked unusable.
[edit routing-instances R5-1 protocols bgp group ibgp]
lab@mxA-1# run show route 40.40/24 hidden extensive
Step 1.14
Navigate to the [edit policy-options policy-statement
next-hop-self] hierarchy and create a policy that will modify the next-hop
attribute to the local loopback address.
[edit routing-instances R5-1 protocols bgp group ibgp]
lab@mxA-1# top edit policy-options policy-statement next-hop-self
Step 1.18
Use the run traceroute 40.40.1.1 source 172.16.Y.1 ttl 10
command to verify connectivity to the 40.40.1.1 address on the P3 router. Be sure
to source the traceroute from your default router’s loopback address.
[edit protocols bgp group rr-cluster]
lab@mxA-1# run traceroute 40.40.1.1 source 172.16.Y.1 ttl 10
traceroute to 40.40.1.1 (40.40.1.1) from 172.16.1.1, 10 hops max, 40 byte
packets
1 10.0.10.2 (10.0.10.2) 0.408 ms 0.316 ms 0.290 ms
2 10.0.10.1 (10.0.10.1) 0.289 ms 0.294 ms 0.281 ms
3 10.0.10.2 (10.0.10.2) 0.298 ms 0.305 ms 0.295 ms
4 10.0.10.1 (10.0.10.1) 0.304 ms 0.312 ms 0.303 ms
5 10.0.10.2 (10.0.10.2) 0.315 ms 0.320 ms 0.321 ms
6 10.0.10.1 (10.0.10.1) 0.325 ms 0.326 ms 0.320 ms
7 10.0.10.2 (10.0.10.2) 0.338 ms 0.336 ms 0.333 ms
8 10.0.10.1 (10.0.10.1) 0.334 ms 0.343 ms 0.336 ms
9 10.0.10.2 (10.0.10.2) 0.348 ms 0.352 ms 0.347 ms
10 10.0.10.1 (10.0.10.1) 0.348 ms 59.994 ms 0.374 ms
Step 1.19
Enter configuration mode and navigate to the [edit policy-options
policy-statement next-hop-self] hierarchy. Modify the policy to change
only the next-hop attribute if the BGP routes are external routes. Use the match
condition route-type to accomplish this task. Commit the change when
completed.
Step 1.21
Use the run show route 40.40/24 table R4-Y.inet.0 detail
command to display the P3 route in the R4-Y routing table.
[edit policy-options policy-statement next-hop-self]
lab@mxA-1# run show route 40.40/24 table R4-Y.inet.0 detail
Step 1.22
Use the run show route 30.30/24 table R4-Y.inet.0 detail
command to display the P1 route in the R4-Y routing table.
[edit policy-options policy-statement next-hop-self]
lab@mxA-1# run show route 30.30/24 table R4-Y.inet.0 detail
In this lab part, you configure an internal network operating with a confederation. It
will break the network up into smaller pieces called sub-AS or member-AS networks.
Each sub-AS is assigned a unique AS number and operates as an independent
internal network that must follow the IBGP rules, requiring a full mesh or route
reflection topology. Connectivity between the sub-AS networks uses a modified form
of EBGP named confederation BGP (CBGP). CBGP peers prepend the sub-AS
number to the AS path attribute as routing updates are exchanged, which is used to
prevent routing loops. Remember to switch to the “Lab 10: Scaling BGP Part 2”
diagram.
Note
The BGP confederation topology requires
you to display information in the different
logical routers known as logical-systems.
Each logical router has its own routing
daemon. Essentially, it allows multiple
routers in the same physical chassis. When
referencing a logical router, the commands
need to include the logical-system
R#-Y, where # is the router number and Y
is the user number (1 or 2). Refer to the lab
diagram for the correct router and user
number.
Step 2.1
Navigate to the top of the configuration and load the device’s reset configuration by
issuing the load override ajspr/lab10-part2-start.config
command. After the configuration has been loaded, commit the changes and return
to operational mode.
[edit]
lab@mxA-1# load override ajspr/lab10-part2-start.config
load complete
[edit]
lab@mxA-1# commit and-quit
commit complete
Exiting configuration mode
lab@mxA-1>
Note
Four logical routers are configured. The
default routing instance is considered its
own logical router. The other three, R3-Y,
R4-Y, and R5-Y are defined in the
logical-system hierarchy.
Step 2.2
Use the show ospf neighbor command to verify OSPF reachability from the
default router to the R3-Y and R4-Y routers.
lab@mxA-1> show ospf neighbor
Address Interface State ID Pri Dead
10.0.10.2 ge-1/0/4.0 Full 172.16.1.2 128 33
10.0.11.2 ge-1/0/5.0 Full 172.16.1.3 128 30
lab@mxA-1>
Step 2.3
Use the show ospf neighbor logical-system R5-Y command to verify
OSPF reachability between the R5-Y router and the R3-Y and R4-Y routers.
lab@mxA-1> show ospf neighbor logical-system R5-Y
Address Interface State ID Pri Dead
10.0.12.1 ge-1/1/6.0 Full 172.16.1.2 128 39
10.0.13.1 ge-1/1/7.0 Full 172.16.1.3 128 38
lab@mxA-1>
Step 2.4
Enter configuration mode and navigate to the [edit routing-options]
hierarchy. Set the autonomous system number to the sub-AS value, 6510Y.
Configure the confederation global autonomous system number (6500Y) and the
two member AS numbers (6510Y and 6520Y). Refer to the lab diagram for the
correct sub-AS and global autonomous system numbers.
lab@mxA-1> configure
Entering configuration mode
[edit]
lab@mxA-1# edit routing-options
[edit routing-options]
lab@mxA-1# set autonomous-system 6510Y
[edit routing-options]
lab@mxA-1# set confederation 6500Y members 6510Y
[edit routing-options]
lab@mxA-1# set confederation 6500Y members 6520Y
[edit routing-options]
lab@mxA-1#
Step 2.5
Navigate to the [edit protocols bgp group ibgp] hierarchy and configure
an internal peer session to the R3-Y router using the loopback addresses. Also apply
the next-hop-self policy as an export group policy.
[edit routing-options]
lab@mxA-1# top edit protocols bgp group ibgp
Step 2.9
Use the run show bgp summary logical-system R3-Y command to
display the BGP peer sessions in the R3-Y router.
[edit logical-systems R3-1 protocols bgp group ibgp]
lab@mxA-1# run show bgp summary logical-system R3-Y
Groups: 1 Peers: 1 Down peers: 0
Table Tot Paths Act Paths Suppressed History Damp State Pending
inet.0 5 5 0 0 0 0
Peer AS InPkt OutPkt OutQ Flaps Last Up/Dwn
State|#Active/Received/Accepted/Damped...
172.16.1.1 65101 11 10 0 0 3:27 5/
5/5/0 0/0/0/0
Step 2.10
Navigate to the [edit logical-systems R4-Y routing-options]
hierarchy. Set the AS number to the sub-AS 6520Y. Configure the confederation
global AS number (6500Y) and the two member AS numbers (6510Y and 6520Y).
Refer to the lab diagram for the correct sub-AS and global AS numbers.
[edit logical-systems R3-1 protocols bgp group ibgp]
lab@mxA-1# top edit logical-systems R4-Y routing-options
Step 2.15
Use the run show bgp summary logical-system R4-Y command to verify
that the R5-Y router is advertising routes to the R4-Y peer.
[edit logical-systems R5-1 protocols bgp group ibgp]
lab@mxA-1# run show bgp summary logical-system R4-Y
Groups: 1 Peers: 1 Down peers: 0
Table Tot Paths Act Paths Suppressed History Damp State Pending
inet.0 5 5 0 0 0 0
Peer AS InPkt OutPkt OutQ Flaps Last Up/Dwn
State|#Active/Received/Accepted/Damped...
172.16.1.4 65201 35 34 0 0 14:25 5/
5/5/0 0/0/0/0
Step 2.19
Use the run show route receive-protocol bgp 172.16.Y.4 detail
command to display the routes being received from the R5 router.
Step 2.20
Use the run show route hidden command to display the hidden routes in the
default router's routing table.
[edit logical-systems R5-1 protocols bgp group cbgp]
lab@mxA-1# run show route hidden
Step 2.21
Configure the next-hop-self policy as the group export policy. Commit the
configuration and return to operational mode.
[edit logical-systems R5-1 protocols bgp group cbgp]
lab@mxA-1# set export next-hop-self
lab@mxA-1>
Step 2.22
Use the show route receive-protocol bgp 172.16.Y.4 command to
display the routes being received from the R5-Y router.
lab@mxA-1> show route receive-protocol bgp 172.16.Y.4
lab@mxA-1>
STOP Tell your instructor that you have completed Lab 10.
Overview
In this lab, you will use the lab diagram titled “Lab 11: BGP Route Damping” to monitor
the EBGP-received routes for any link flapping that might occur within the network. Route
damping monitors the behavior of EBGP-received routes being withdrawn and
readvertised. It uses a point system known as figure-of-merit to determine whether routes
should be installed and advertised into the IBGP topology, or suppressed at the edge.
By completing this lab, you will perform the following tasks:
• Create a static route.
• Modify the export policies to advertise the static route.
• Configure damping in the default router.
• Flap the static route for your partner.
• Configure policy to alter the default damping parameters.
• Apply the policy as an EBGP import policy.
Note
The lab topology requires you to display
information in the different virtual routing
instances. When referencing the routing
instance, the commands include the
routing instance name, R3-Y, where Y is
the user number (1 or 2). Refer to the lab
diagram for the correct instance and user
number.
When performing network commands such
as ping or traceroute within the
routing instance, the
routing-instance R3-Y switch must
be used to consult the appropriate virtual
instance. When performing show
commands, the instance R3-Y or
table R3-Y switch must be used to
display the appropriate adjacencies or
routing tables.
In this lab part, you modify the IBGP routing policy, redistributing all static routes
between the default router and the R3-Y router. The redistribute-statics
export policy must be modified to advertise only the 172.16.Y.0/24 specific routes
between the routing instances in your student device.
Step 1.1
Access the CLI on your student device using either the console, Telnet, or SSH as
directed by your instructor. Refer to the management network diagram for the IP
address associated with your student device. The following example demonstrates a
simple Telnet session with the Secure CRT program as a basis:
Step 1.2
Log in to the router with the username lab using a password of lab123. Note that
both the name and password are case-sensitive.
login: lab
Password:
[edit]
lab@mxA-1# load override ajspr/lab11-start.config
load complete
[edit]
lab@mxA-1# commit
commit complete
lab@mxA-1#
Step 1.4
Variable references are used throughout this lab to distinguish various parts of
command-line interface (CLI) input.
1. Variable R will be 1 or 2 but will indicate a value from your remote team’s
devices. Just remember “R for Remote.”
2. Variable V indicates the last number of the VLAN value on the links
connecting to the P1, P2 and P3 routers. On the mxX-1 side, the value will
be 1, 3 or 5. On the mxX-2 device, the value will be 2, 4 or 6. Just
remember “V for VLAN.”
3. Variable X indicates the pod letter: A, B, C, or D.
4. Variable Y will be a 1 or 2 depending on which student device you have
been assigned within your pod. Just remember “Y for Yours.”
5. Variable Z will be either 1, 2, 3, or 4 depending upon which pod you have
been assigned (A = 1, B = 2, C = 3, and D = 4).
Enter configuration mode and navigate to the [edit policy-options
policy-statement redistribute-statics] hierarchy. Modify the policy
to ensure that only the specific 172.16.Y.0/24 routes are redistributed. Commit
the change when completed.
[edit]
lab@mxA-1# edit policy-options policy-statement redistribute-statics
In this lab part, you create and advertise a static route to the P1 and P2 routers that
will propagate the route through EBGP to your partner’s default router. After
damping is enabled in the default router, you and your partner will flap the route by
deleting the static route and adding it back.
Step 2.1
Navigate to the [edit routing-options] hierarchy. Configure a
172.22.Y.0/24 static route with a next hop of reject.
[edit policy-options policy-statement redistribute-statics]
lab@mxA-1# top edit routing-options
[edit routing-options]
lab@mxA-1# set static route 172.22.Y.0/24 reject
[edit routing-options]
lab@mxA-1#
Step 2.2
Navigate to the [edit policy-options policy-statement export-p1]
hierarchy and configure a third term in the policy to advertise the static route. Use
the show command to display the policy.
[edit routing-options]
lab@mxA-1# top edit policy-options policy-statement export-p1
Step 2.5
Navigate to the [edit protocols bgp] hierarchy. Enable BGP damping as a
global command. Commit the change.
[edit routing-options]
lab@mxA-1# delete static route 172.22.Y.0/24
[edit routing-options]
lab@mxA-1# commit
commit complete
[edit routing-options]
lab@mxA-1#
Step 2.7
Use the run show route damping history table inet.0 detail
command to display routes that are withdrawn but have a history of figure-of-merit in
the default routing table.
[edit routing-options]
lab@mxA-1# run show route damping history table inet.0 detail
[edit routing-options]
lab@mxA-1#
STOP Wait for your partner to complete the previous step before continuing.
Step 2.8
Navigate to the top of the configuration and perform a rollback 1 to readvertise
the static route. Commit the configuration when completed.
[edit routing-options]
lab@mxA-1# top
[edit]
lab@mxA-1# rollback 1
load complete
[edit]
lab@mxA-1# commit
commit complete
[edit]
lab@mxA-1#
Step 2.9
Use the run show route damping decayed table inet.0 detail
command to show active routes that are decaying but not suppressed.
[edit]
lab@mxA-1# run show route damping decayed table inet.0 detail
[edit]
lab@mxA-1#
STOP Wait for your partner to complete the previous step before continuing.
Step 2.10
Flap the route 4 times using the rollback 1 and commit commands.
[edit]
lab@mxA-1# rollback 1
load complete
[edit]
lab@mxA-1# commit
commit complete
www.juniper.net BGP Route Damping (Detailed) • Lab 11–11
Advanced Junos Service Provider Routing
[edit]
lab@mxA-1# rollback 1
load complete
[edit]
lab@mxA-1# commit
commit complete
[edit]
lab@mxA-1# rollback 1
load complete
[edit]
lab@mxA-1# commit
commit complete
[edit]
lab@mxA-1# rollback 1
load complete
[edit]
lab@mxA-1# commit
commit complete
lab@mxA-1#
Step 2.11
Use the run show route damping suppressed table inet.0 detail
command to display routes that have been suppressed due to damping in the
default routing table.
[edit]
lab@mxA-1# run show route damping suppressed table inet.0 detail
[edit]
lab@mxA-1#
STOP Wait for your partner to complete the previous step before continuing.
In this lab part, you use routing policy to modify the default damping parameters.
You create an import policy to disable damping on routes received from the P1
router, and another policy to aggressively damp routes received from the P2 router.
Step 3.1
Navigate to the [edit policy-options] hierarchy. Create and configure two
damping profiles named disable and aggressive. The disable profile should
use the disable option. The aggressive profile should set the suppress
parameter to 1500, half-life to 10 minutes, and the reuse parameter to 500.
[edit]
lab@mxA-1# edit policy-options
[edit policy-options]
lab@mxA-1# set damping disable disable
[edit policy-options]
lab@mxA-1# set damping aggressive suppress 1500
[edit policy-options]
lab@mxA-1# set damping aggressive half-life 10
[edit policy-options]
lab@mxA-1# set damping aggressive reuse 500
[edit policy-options]
lab@mxA-1#
Step 3.2
Navigate to the [edit policy-options policy-statement
modify-damping] hierarchy. Configure the first term of the modify-damping
import policy to use the disable profile on all BGP routes received from the P1
neighbor. Configure the second term to use the aggressive profile on all routes
received from the P2 neighbor. Use the show command to display the policy.
[edit policy-options]
lab@mxA-1# edit policy-statement modify-damping
Step 3.5
Navigate to the [edit routing-options] hierarchy. Use the delete
static route 172.22.Y.0/24 command followed by a commit to flap the
route. Use the rollback 1 command followed by a commit to readvertise the
route.
[edit protocols bgp group P1-P2]
lab@mxA-1# top edit routing-options
[edit routing-options]
lab@mxA-1# delete static route 172.22.Y.0/24
[edit routing-options]
lab@mxA-1# commit
commit complete
[edit routing-options]
lab@mxA-1# top
[edit]
lab@mxA-1# rollback 1
load complete
[edit]
lab@mxA-1# commit
commit complete
[edit]
lab@mxA-1#
Step 3.6
Use the run show route damping suppress table inet.0 detail
command to display any routes suppressed due to damping in the default routing
table.
[edit]
lab@mxA-1# run show route damping suppressed table inet.0 detail
[edit]
lab@mxA-1#
Step 3.7
Use the run show route 172.22.R.0/24 table inet.0 detail
command to verify that the damping policy on the P1 router is disabling damping on
received routes.
[edit]
lab@mxA-1# run show route 172.22.R.0/24 table inet.0 detail
[edit]
lab@mxA-1#
Step 3.8
Use the run show route damping decayed table inet.0 detail
command to display any active routes with figure-of-merit in the default routing
table.
[edit]
lab@mxA-1# run show route damping decayed table inet.0 detail
[edit]
lab@mxA-1#
[edit]
lab@mxA-1# commit and-quit
commit complete
Exiting configuration mode
lab@mxA-1> exit
STOP Tell your instructor that you have completed Lab 11.