Routing

Hi,

I am preparing for JNCIE-M/T exam and I face a problem. My lab study on lohical-routers on MX router. I tried to established L3VPN but it doesn't work. I suspect the problem from MX itself as I am following same studyguide steps. I tried to try same setup on Olive semulator but the same result that's why I need to check may be there is something missing

topology is  CE(C1) ---> PE(R4) ---> P(R5) ----> PE(R6) ----> CE(C2)

I received routes update at each PE but still couldn't ping from PE to remote PE through routing-instance

So the problem I receive update but no traffic

root@R6# show routing-instances
c {
    instance-type vrf;
    interface em1.0;
    route-distinguisher 10.0.9.6:65412;
    vrf-target target:65412:1;
    routing-options {
        static {
            route 220.220.0.0/16 next-hop 172.16.0.10;
        }
    }
}

[edit]
root@R6# show protocols bgp
group int {
    type internal;
    local-address 10.0.9.6;
    neighbor 10.0.3.4 {
        family inet {
            unicast;
        }
        family inet-vpn {
            unicast;
        }
    }
}

---------------------------------

root@R4# show routing-instances
c {
    instance-type vrf;
    interface em2.0;
    route-distinguisher 10.0.3.4:65412;
    vrf-target target:65412:1;
    protocols {
        bgp {
            group ebgp {
                neighbor 172.16.0.6 {
                    peer-as 65010;
                }
            }
        }
    }
}

[edit]
root@R4# show protocols bgp
group int {
    type internal;
    local-address 10.0.3.4;
    neighbor 10.0.9.6 {
        family inet {
            unicast;
        }
        family inet-vpn {
            unicast;
        }
    }
}

------------------------------------

root@R4# run show route table c                          

c.inet.0: 5 destinations, 5 routes (5 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

172.16.0.4/30      *[Direct/0] 00:17:15
                    > via em2.0
172.16.0.5/32      *[Local/0] 00:17:15
                      Local via em2.0
172.16.0.8/30      *[BGP/170] 00:17:16, localpref 100, from 10.0.9.6
                      AS path: I
                    > to 10.0.2.9 via em0.0, label-switched-path r4-r6
200.200.0.0/16     *[BGP/170] 00:17:10, localpref 100
                      AS path: 65010 I
                    > to 172.16.0.6 via em2.0
220.220.0.0/16     *[BGP/170] 00:17:16, localpref 100, from 10.0.9.6
                      AS path: I
                    > to 10.0.2.9 via em0.0, label-switched-path r4-r6

[edit]
root@R4# run ping rapid routing-instance c 172.16.0.9    
PING 172.16.0.9 (172.16.0.9): 56 data bytes
.....
--- 172.16.0.9 ping statistics ---
5 packets transmitted, 0 packets received, 100% packet loss

[edit]
root@R4#

------------------------

root@R6# run show route table c 172.16.0.9

c.inet.0: 5 destinations, 5 routes (5 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

172.16.0.9/32      *[Local/0] 00:18:39
                      Local via em1.0

[edit]
root@R6# run ping rapid routing-instance c 172.16.0.9
PING 172.16.0.9 (172.16.0.9): 56 data bytes
!!!!!
--- 172.16.0.9 ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max/stddev = 0.027/0.175/0.764/0.294 ms

[edit]
root@R6#

Hi,

Can you post "show route table inet.3" on R6? The problem may be in missing LSP toward R4 from R6

Hello,

This should help:

set routing-instances c vrf-table-label

 Do it on both R4 and R6.

HTH

Rgds

Alex

@ aarsiniev. thanks dear I will try and feed u back with the result currently I am working on same topology on SRX80. I upgraded the Junos also. I will check dear and let u know

Hi, After upgrade the Junos to 10.4R5.5 on the MX80 I could ping 172.16.0.9 which is terminated on the other PE (R6) but still I couldn't reach to remote CE either WAN interface (172.16.0.10) or its loopback interface.

when I tried to ping mpls it replies which is very good news 🙂 

router4@LAB-JNCIE:r4# run ping mpls l3vpn count 5 c prefix 172.16.0.10  
!!!!!
--- lsping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss

[edit]
router4@LAB-JNCIE:r4# run ping mpls l3vpn count 5 c prefix 201.201.1.1   
!!!!!
--- lsping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss

but still unable to ping or trace

show route table inet.3 from R6 is below

router6@LAB-JNCIE:r6# run show route table inet.3

inet.3: 2 destinations, 2 routes (2 active, 0 holddown, 0 hidden)
Restart Complete
+ = Active Route, - = Last Active, * = Both

10.0.3.4/32        *[RSVP/7/1] 00:25:50, metric 20
                    > to 10.0.8.6 via lt-1/2/0.16, label-switched-path r6-r4
10.0.9.7/32        *[RSVP/7/1] 00:25:52, metric 20
                    > to 10.0.8.6 via lt-1/2/0.16, label-switched-path r6-r7

Hi,

I am not sure if you are using "vrf-table-label". In case you are, please remove and try ping/traceroute.

Since it is logical-router setup, "vrf-table-label" is not supported with lt interface.

http://www.juniper.net/techpubs/software/junos/junos95/swconfig-vpns/id-10978770.html

Regards

Surya Prakash

Hi all,

I tried to re-create my lab setup based on logical-systems also but this time configure physical link (ge-x/x/x) instead of lt-x/x/x. and it is working fine. I was confused because it is simple and straight configuration and doesn't work. Thanks all for your contribution.

Mohamed Elhariry

JNCIP M/T # 1241

try to add family route-target to bgp internal group

Hi,

With the given output, I could see VPN route pointed to LSP.

172.16.0.8/30      *[BGP/170] 00:17:16, localpref 100, from 10.0.9.6
                      AS path: I
                    > to 10.0.2.9 via em0.0, label-switched-path r4-r6

Can you try "ping mpls l3vpn count 5 c prefix 172.16.0.9 " and also "traceroute routing-instance c 172.16.0.9"?

Regards

Surya Prakash

Hi Surya,

It's pointed to LSP on R4 toward R6, but there's no route pointed to LSP from R6 toward R4 mening it may be a problem with LSP

@ dpapana. Thanks for your reply.

Accually I created 2 LSP from R4--> R6 and also R6-->R4. tried also using ldp istead of RSVP but both of them didn't work.