Ethernet Switching
Highlighted
Ethernet Switching

Traceroute working but not able to ping the loopback of the switch

[ Edited ]
‎01-28-2017 12:07 PM

Below is the simple topology iam working on. The direct link between cisco router and the switch is in the separate v1-VRF. I have added loopback interface configurations in the Switch which is in the master routing instance.

 

 Untitled.png

 

  Iam using rib-groups to import the default static route pointing towards router from v1-VRF to inet.0 and adding the loopback interface on both routing table. There is a static route for loopback ip on the router pointing towards the switch direct interface. Iam trying to ping the loopback from the Host which is not working but traceroute to the loopback returns fine. Any ideas what is missing here why ping/ssh is not working.

 

Here is the configuration on the switch.



unit 0 {
    family inet {
        address 10.10.59.246/32;
    }
}

interface ge-0/0/0
description "Connection to uplink cisco";
vlan-tagging;
unit 0 {
    vlan-id 28;
    family inet {
        address 10.10.59.82/30;
    }
}
unit 1 {
    vlan-id 29;
    family inet {
        address 10.10.59.242/30;
    }
}

rounting-instance
v1-VRF {
    instance-type virtual-router;
    interface ge-0/0/0.0;
    interface irb.59;
    routing-options {
        static {
            rib-group v1-VRF_to_inet0;
            route 0.0.0.0/0 {
                next-hop 10.10.59.81;
                bfd-liveness-detection {
                    minimum-interval 300;
                }
            }
        }
    }
}
routing-options
interface-routes {
    rib-group inet inet0_to_v1-VRF;
}
rib-groups {
    inet0_to_v1-VRF {
        import-rib [ inet.0 v1-VRF.inet.0 ];
        import-policy loop_address;
    }
    v1-VRF_to_inet0 {
        import-rib [ v1-VRF.inet.0 inet.0 ];
    }
}

show route table inet.0

inet.0: 4 destinations, 4 routes (4 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

0.0.0.0/0          *[Static/5] 3d 03:27:38
                    > to 10.10.59.81 via ge-0/0/0.0
10.10.59.246/32  *[Direct/0] 3d 03:27:38
                    > via lo0.0
192.168.20.0/24    *[Direct/0] 7w4d 01:49:55
                    > via irb.2001
192.168.20.1/32    *[Local/0] 7w4d 01:49:56
                      Local via irb.2001


show route table v1-VRF.inet.0
V1-VRF.inet.0: 7 destinations, 7 routes (7 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

0.0.0.0/0          *[Static/5] 3d 03:28:56
                    > to 10.208.159.81 via ge-0/0/0.0
10.10.59.80/30   *[Direct/0] 7w3d 01:30:23
                    > via ge-0/0/0.0
10.10.59.82/32   *[Local/0] 7w4d 01:51:14
                      Local via ge-0/0/0.0
10.10.59.246/32  *[Direct/0] 3d 03:28:56
                    > via lo0.0
10.10.89.128/26  *[Direct/0] 7w4d 01:51:13
                    > via irb.3859
10.10.89.131/32  *[Local/0] 7w4d 01:51:14
                      Local via irb.3859
192.168.20.1/32    *[Local/0] 3d 03:28:56
                      Local via irb.2001


can anybody help me with what might be missing here. Iam pinging from 10.10.59.81 to 10.10.59.246.


6 REPLIES 6
Highlighted
Ethernet Switching

Re: Ex4600 switch route import using rib-groups but still not able to ping

‎01-29-2017 11:34 AM

Looks like the root routing instance does not have the interface route 10.10.59.80/30 which would be needed for the reply.

 

Try adding the interface routes

 

set routing-options interface-routes rib-group inet v1-VRF_to_inet0

Steve Puluka BSEET - Juniper Ambassador
IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
http://puluka.com/home
Highlighted
Ethernet Switching

Re: Ex4600 switch route import using rib-groups but still not able to ping

‎01-29-2017 12:45 PM

Still not able to ping the loopback from host.Iam not able to ping the 10.10.59.81 (next hop) from the switch master routing table, it all works fine from V1-VRF, I tried to put the loopback in the V1-VRF and its working fine.

 

Here is the updated route table

 

inet.0: 8 destinations, 8 routes (8 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

0.0.0.0/0          *[Static/5] 21:42:40
                    > to 10.10.59.81 via ge-0/0/0.0
10.10.59.80/30   *[Direct/0] 00:00:07
                    > via ge-0/0/0.0
10.10.59.82/32   *[Local/0] 00:00:07
                      Local via ge-0/0/0.0
10.10.59.246/32  *[Direct/0] 4d 03:49:07
                    > via lo0.0
10.10.189.128/26  *[Direct/0] 00:00:07
                    > via irb.3859
10.10.189.131/32  *[Local/0] 00:00:07
                      Local via irb.3859
192.168.20.0/24    *[Direct/0] 7w5d 02:11:24
                    > via irb.2001
192.168.20.1/32    *[Local/0] 7w5d 02:11:25
                      Local via irb.2001

# commit confirmed will be rolled back in 10 minutes
{master:0}[edit]
admin@TSF-LB-CEHLR002# run show route table OAM-VRF.inet.0

V1-VRF.inet.0: 7 destinations, 7 routes (7 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

0.0.0.0/0          *[Static/5] 21:56:33
                    > to 10.10.59.81 via ge-0/0/0.0
10.10.59.80/30   *[Direct/0] 7w4d 02:04:27
                    > via ge-0/0/0.0
10.10.59.82/32   *[Local/0] 7w5d 02:25:18
                      Local via ge-0/0/0.0
10.10.59.246/32  *[Direct/0] 00:01:14
                    > via lo0.0
10.10.189.128/26  *[Direct/0] 7w5d 02:25:17
                    > via irb.3859
10.10.189.131/32  *[Local/0] 7w5d 02:25:18
                      Local via irb.3859
192.168.20.1/32    *[Local/0] 00:03:58
                      Local via irb.2001

Highlighted
Ethernet Switching

Re: Ex4600 switch route import using rib-groups but still not able to ping

‎01-30-2017 02:58 AM

What  is the host address you are doing the ping from as 10.10.59.81 is the interface address on the cisco?

Does ping fail in both directions from Junipter to host and from host to Juniper?

 

What does the traceroute from the root routing instance to this address show?

 

What does the traceroute from the host to the loopback in the root routing instance show?

Steve Puluka BSEET - Juniper Ambassador
IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
http://puluka.com/home
Highlighted
Ethernet Switching

Re: Ex4600 switch route import using rib-groups but still not able to ping

‎01-30-2017 08:06 AM

Host address is 10.10.67.20

yes, ping fails from both direction

 

no responses from any hops  on trceroute from switch to host

traceroute from host to switch

 

tracert 10.10.59.246
1    *    *    *    Request timed out.
2    <1 ms    <1 ms    <1 ms    10.10.67.141
3    <1 ms    <1 ms    <1 ms    10.10.59.81
4    20 ms    21 ms    21 ms    10.10.59.246
Trace complete.

 

 

Highlighted
Ethernet Switching

Re: Ex4600 switch route import using rib-groups but still not able to ping

‎01-30-2017 03:57 PM

Based on this data it looks like 10.10.67.20 should hit your default route in the route routing instance.  Can you confirm that with:

 

show route 10.10.67.20

 

Also can you ping and trace route to the next hop for the default route 10.10.59.81 from the root instance

Steve Puluka BSEET - Juniper Ambassador
IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
http://puluka.com/home
Highlighted
Ethernet Switching

Re: Ex4600 switch route import using rib-groups but still not able to ping

‎01-30-2017 06:21 PM

I found exact symptoms i have in one of the KB which had a workaround to use filter base forwarding using firewalls to forward the packets to desired routing instance. I added the input filter to forward the packets with loopbacks destination address to default routing instance and i was able to ping the loopback from switch now.

 

here is the KB article explaining the issue.

https://kb.juniper.net/InfoCenter/index?page=content&id=KB23027&actp=search&viewlocale=en_US&searchi...

 

Thanks spuluka for your efforts..

Feedback