lhg803 | 26 Aug 07:14 2014

[quagga-users 13766] RIPv2 16-digit password MD5 authentication failure with cisco router!

Hi everyone,I have a question about the ripv2 md5 authentication. The detail information is below. ###########################################################################################################
1,network topology
  _________            ___________
 |         |          |          |
 |  cisco  |__________|  linux   |
 |         |          |          |
 |_________|          |__________|
   eth1/0:6.6.6.2    eth0:6.6.6.1
 
2,configuration for each box
(1)cisco
!
key chain test
 key 1
  key-string 1234567890123456
!
interface Loopback0
 ip address 10.10.10.1 255.255.255.0
!
interface Ethernet1/0
 ip address 6.6.6.2 255.255.255.0
 ip rip authentication mode md5
 ip rip authentication key-chain test
!
router rip
 version 2
 network 6.0.0.0
 network 10.0.0.0
 
(2)linux interface ip and quagga ripd
 
a,interface ip address
8.8.8.0/24 dev eth1  proto kernel  scope link  src 8.8.8.1
6.6.6.0/24 dev eth0  proto kernel  scope link  src 6.6.6.1
 
b,quagga ripd
 
Building configuration...
 
Current configuration:
!
hostname ripd
!
password quagga
!
!
interface x0ge1
 ip rip authentication mode md5 auth-length old-ripd
 ip rip authentication string 1234567890123456
!
router rip
 version 2
 network 6.6.6.0/24
 network 8.8.8.0/24
!
line vty
!
end
 
3,debug quagga ripd, information below show:
 
2014/08/18 17:52:36 RIP: RECV packet from 6.6.6.2 port 520 on eth0
2014/08/18 17:52:36 RIP: RECV RESPONSE version 2 packet size 64
2014/08/18 17:52:36 RIP:   family 0xFFFF type 3 (MD5 authentication)
2014/08/18 17:52:36 RIP:     RIP-2 packet len 44 Key ID 1 Auth Data len 20
2014/08/18 17:52:36 RIP:     Sequence Number 20
2014/08/18 17:52:36 RIP:   10.0.0.0/8 -> 0.0.0.0 family 2 tag 0 metric 1
2014/08/18 17:52:36 RIP:   family 0xFFFF type 1 (MD5 data)
2014/08/18 17:52:36 RIP:     MD5: 05E1BAEBF321F963C5E3A80F861EFF
2014/08/18 17:52:36 RIP: RIPv2 MD5 authentication from 6.6.6.2
2014/08/18 17:52:36 RIP:     Packet MD5: 05E1BAEBF321F9633EC5E3A80F861EFF
2014/08/18 17:52:36 RIP:     Compute MD5: 16C8F384C11E6548247FC529F41D810D
2014/08/18 17:52:36 RIP: RIPv2 MD5 authentication failure
 
4,debug cisco rip,terminal monitor "authentication success":
*Aug 20 17:25:37.795: RIP: received packet with MD5 authentication
*Aug 20 17:25:37.799: RIP: received v2 update from 6.6.6.1 on Ethernet1/0
*Aug 20 17:25:37.803:      8.8.8.0/24 via 0.0.0.0 in 1 hops
 
PS:
if auth-string is 123456789012345, ripd will auth success, but cisco will fail!
-------------------------------------------------------------------------------
1,linux box info:
 
2014/08/18 18:02:55 RIP: RECV packet from 6.6.6.2 port 520 on eth0
2014/08/18 18:02:55 RIP: RECV RESPONSE version 2 packet size 64
2014/08/18 18:02:55 RIP:   family 0xFFFF type 3 (MD5 authentication)
2014/08/18 18:02:55 RIP:     RIP-2 packet len 44 Key ID 1 Auth Data len 20
2014/08/18 18:02:55 RIP:     Sequence Number 42
2014/08/18 18:02:55 RIP:   10.0.0.0/8 -> 0.0.0.0 family 2 tag 0 metric 1
2014/08/18 18:02:55 RIP:   family 0xFFFF type 1 (MD5 data)
2014/08/18 18:02:55 RIP:     MD5: D37FA34DDF522460252B07B0833CE2
2014/08/18 18:02:55 RIP: RIPv2 MD5 authentication from 6.6.6.2
2014/08/18 18:02:55 RIP:     Packet MD5: D37FA34DDF522460AA252B07B0833CE2
2014/08/18 18:02:55 RIP:     Compute MD5: D37FA34DDF522460AA252B07B0833CE2
2014/08/18 18:02:55 RIP: RIPv2 MD5 authentication success
 
2,cisco router info:
 
*Aug 20 17:33:31.987: RIP: received packet with MD5 authentication
*Aug 20 17:33:31.991: RIP: ignored v2 packet from 6.6.6.1 (invalid authentication)
-------------------------------------------------------------------------------
###########################################################################################################
 
Thanks in advance for your response.
Regards,lihg2014-08-26
_______________________________________________
Quagga-users mailing list
Quagga-users@...
https://lists.quagga.net/mailman/listinfo/quagga-users
Matshidze, Calvin C | 18 Aug 12:16 2014
Picon

[quagga-users 13765] FW: OSPF: *** sendmsg in ospf_write failed to 224.0.0.5, id 4350, off 0, len 80, interface dummy0, mtu 1500: Operation not permitted

 Hi Nick,

 Please find more info on what I am trying to do. I'm basically trying to have all the IP packets leaving the box
use the source IP (10.81.250.211) instead of using the physical IP interface IP address (10.144.184.77).

 Currently I have this working with static routes on the switch without OSPF - and now I'm trying to use OPSF
and have static routes removed on the switch.

 Here's how the box is configured:

 1. Daemons

 ZLNX14:~ # cat /etc/quagga/daemons
 zebra=yes
 bgpd=no
 ospfd=yes
 ospf6d=no
 ripd=no
 ripngd=no

 2. OSPFD.CONF
 ZLNX14:~ # cat /etc/quagga/ospfd.conf
 ! -*- ospf -*-
 !
 ! OSPFd configuration file
 !
 !
 hostname ZLNX14
 password zebra
 enable password zebra
 !
 interface dummy0
 ip ospf authentication message-digest
 ip ospf message-digest-key 1 md5 ECBF011F04D56B9E ip ospf priority 0 
 ip ospf cost 1 !
 interface eth2
 ip ospf authentication message-digest
 ip ospf message-digest-key 1 md5 ECBF011F04D56B9E ip ospf priority 0 
 ip ospf cost 1 !
 interface lo
 !
 interface sit0
 !
 router ospf
 ospf router-id 10.81.250.211
 network 10.144.184.77/24 area 0.0.0.5
 network 10.81.250.211/32 area 0.0.0.5 area 0.0.0.5 authentication 
 message-digest area 0.0.0.5 stub no-summary !
 line vty
 exec-timeout 0 0
 !
 log file /var/log/quagga/ospfd.log

 3. ZEBRA.CONF

 ZLNX14:~ # cat /etc/quagga/zebra.conf
 ! -*- zebra -*-
 !
 ! zebra configuration file
 !
 ! $Id: zebra.conf.sample,v 1.1.1.1 2002/12/13 20:15:30 paul Exp $ !
 hostname ZLNX14
 password zebra
 enable password zebra
 !
 ip prefix-list ANY permit 0.0.0.0/0 le 32 route-map RM1 permit 10
    match ip address prefix-list ANY
    set src 10.81.250.211
 !
 ip protocol ospf route-map RM1
 !
 ! Interface's description. 
 !
 interface dummy0
 ip address 10.81.250.211/32
 ipv6 nd suppress-ra
 !
 interface eth2
 ip address 10.144.184.77/24
 ipv6 nd suppress-ra
 !
 interface lo
 !
 interface sit0
 ipv6 nd suppress-ra
 !
 ip forwarding
 !
 line vty
  exec-timeout 0 0
 !
 !
 log file /var/log/quagga/zebra.log

 
 INTERFACE DISPLAY

 ZLNX14:~ # ifconfig
 dummy0    Link encap:Ethernet  HWaddr 36:38:EE:EE:D2:A7  
           inet addr:10.81.250.211  Bcast:0.0.0.0  Mask:255.255.255.255
           inet6 addr: fe80::3438:eeff:feee:d2a7/64 Scope:Link
           UP BROADCAST RUNNING NOARP  MTU:1500  Metric:1
           RX packets:0 errors:0 dropped:0 overruns:0 frame:0
           TX packets:17197 errors:0 dropped:0 overruns:0 carrier:0
           collisions:0 txqueuelen:0 
           RX bytes:0 (0.0 b)  TX bytes:1616422 (1.5 Mb)

 eth1      Link encap:Ethernet  HWaddr 02:00:EC:A2:00:40  
           inet6 addr: fe80::ecff:fea2:40/64 Scope:Link
           UP BROADCAST RUNNING MULTICAST  MTU:1492  Metric:1
           RX packets:44424 errors:0 dropped:0 overruns:0 frame:0
           TX packets:3 errors:0 dropped:0 overruns:0 carrier:0
           collisions:0 txqueuelen:1000 
           RX bytes:4919719 (4.6 Mb)  TX bytes:258 (258.0 b)

 eth2      Link encap:Ethernet  HWaddr 00:14:5E:78:C5:16  
           inet addr:10.144.184.77  Bcast:10.144.184.255 
           Mask:255.255.255.0
           inet6 addr: fe80::14:5e00:4178:c516/64 Scope:Link
           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
           RX packets:840135 errors:0 dropped:0 overruns:0 frame:0
           TX packets:158162 errors:0 dropped:0 overruns:0 carrier:0
           collisions:0 txqueuelen:1000 
           RX bytes:199433911 (190.1 Mb)  TX bytes:163126033 (155.5 Mb)

 lo        Link encap:Local Loopback  
           inet addr:127.0.0.1  Mask:255.0.0.0
           inet6 addr: ::1/128 Scope:Host
           UP LOOPBACK RUNNING  MTU:16436  Metric:1
           RX packets:16417 errors:0 dropped:0 overruns:0 frame:0
           TX packets:16417 errors:0 dropped:0 overruns:0 carrier:0
           collisions:0 txqueuelen:0 
           RX bytes:19321250 (18.4 Mb)  TX bytes:19321250 (18.4 Mb)

 Please let me know if there's any specific information you need to

 Thanks in advance

 Regards,

 Calvin Matshidze

 
 | System z  | Standard Bank South Africa |Riverclub Computer Centre 44 
 | Borrowdale Ave | RiverClub| Post Code 2149  | +27 11 700 1482 | +27 
 | 82 706 0583 |
  Email: calvin.matshidze@...  |  
www.standardbank.com  

 -----Original Message-----
 From: Nick Hilliard [mailto:nick@...]
 Sent: 17 August 2014 05:34 PM
 To: Matshidze, Calvin C; Quagga-users@...
 Subject: Re: [quagga-users 13762] OSPF: *** sendmsg in ospf_write 
 failed to 224.0.0.5, id 4350, off 0, len 80, interface dummy0, mtu 
 1500: Operation not permitted

 On 17/08/2014 15:13, Matshidze, Calvin C wrote:
 Thanks for the advice Nick. All I'm trying to do is make dummy0 IP 
 act as the source IP for physical interface IP 10.144.184.77. So if I 
 disable OSPF on dummy0 as you suggested I should be OK I guess, right?
 I plan to attempt it as u suggested.

 no idea.  you haven't given much info about how your box is configured or what you're trying to do.  Anything
which nats OSPF sessions is doomed to failure.  If you have interfaces with overlapping IP addresses, then
that will probably also cause trouble with OSPF.

 Nick
 Standard Bank email disclaimer and confidentiality note Please go to 
 http://www.standardbank.co.za/site/homepage/emaildisclaimer.html to read our email disclaimer
and confidentiality note. Kindly email
disclaimer@... (no content or subject line
necessary) if you cannot view that page and we will email our email disclaimer and confidentiality note to you.
Nick Hilliard | 17 Aug 17:34 2014
Picon

[quagga-users 13764] Re: OSPF: *** sendmsg in ospf_write failed to 224.0.0.5, id 4350, off 0, len 80, interface dummy0, mtu 1500: Operation not permitted

On 17/08/2014 15:13, Matshidze, Calvin C wrote:
> Thanks for the advice Nick. All I'm trying to do is make dummy0 IP act
> as the source IP for physical interface IP 10.144.184.77. So if I
> disable OSPF on dummy0 as you suggested I should be OK I guess, right? I
> plan to attempt it as u suggested.

no idea.  you haven't given much info about how your box is configured or
what you're trying to do.  Anything which nats OSPF sessions is doomed to
failure.  If you have interfaces with overlapping IP addresses, then that
will probably also cause trouble with OSPF.

Nick
Matshidze, Calvin C | 17 Aug 12:46 2014
Picon

[quagga-users 13762] OSPF: *** sendmsg in ospf_write failed to 224.0.0.5, id 4350, off 0, len 80, interface dummy0, mtu 1500: Operation not permitted

Dear List,

I have implemented zebra and quagga for dynamic routing using IPTABLES and SNAT (to enable SOURCEVIPA) on SuSE Linux.

The configuration is as follows:

VIPA=10.81.250.211
Interface IP=10.144.184.77
Gateway= 10.144.184.1 and 10.144.184.2

The IPTABLES rule to make 10.81.250.211 the source IP for all packets is as follows:

iptables -t nat -A POSTROUTING -p tcp -o eth1 -s 10.144.184.77 -j SNAT --to 10.81.250.211

When I I start OSPF it start up fine but the OSPF neighbor do not connect and instead i see this message on the log:

"*** sendmsg in ospf_write failed to 224.0.0.5, id 4312, off 0, len 80, interface dummy0, mtu 1500: Operation not permitted"

Any ideas what I could be doing wrong which is causing the above error message?

Thanks a lot in advance

Below is an extract from the log:

2014/08/17 04:17:03 OSPF: OSPFd 0.99.9 starting: vty <at> 2604
2014/08/17 04:17:03 OSPF: ospfTrapIfStateChange trap sent: 10.81.250.211 now DROther
2014/08/17 04:17:03 OSPF: interface 10.81.250.211 [6] join AllSPFRouters Multicast group.
2014/08/17 04:17:03 OSPF: ospfTrapIfStateChange trap sent: 10.144.184.77 now DROther
2014/08/17 04:17:03 OSPF: interface 10.144.184.77 [3] join AllSPFRouters Multicast group.
2014/08/17 04:17:03 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.2 now Init/DROther
2014/08/17 04:17:03 OSPF: DR-Election[1st]: Backup 10.144.184.2
2014/08/17 04:17:03 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:03 OSPF: DR-Election[1st]: Backup 0.0.0.0
2014/08/17 04:17:03 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:03 OSPF: Packet[DD]: Neighbor 192.168.128.11 Negotiation done (Slave).
2014/08/17 04:17:03 OSPF: nsm_change_state(192.168.128.11, Loading -> Full): scheduling new router-LSA origination
2014/08/17 04:17:03 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.101 now Init/DROther
2014/08/17 04:17:03 OSPF: DR-Election[1st]: Backup 10.144.184.101
2014/08/17 04:17:03 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:03 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.1 now Init/DROther
2014/08/17 04:17:03 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:03 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:03 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.101 now ExStart/DROther
2014/08/17 04:17:03 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:03 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:03 OSPF: Link State Update: Neighbor[192.168.128.9] state ExStart is less than Exchange
2014/08/17 04:17:03 OSPF: Packet[DD]: Neighbor 192.168.128.9 Negotiation done (Slave).
2014/08/17 04:17:04 OSPF: nsm_change_state(192.168.128.9, Exchange -> Full): scheduling new router-LSA origination
2014/08/17 04:17:04 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.59 now Init/DROther
2014/08/17 04:17:04 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:04 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:04 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.54 now Init/DROther
2014/08/17 04:17:04 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:04 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:04 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.41 now Init/DROther
2014/08/17 04:17:04 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:04 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:04 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.104 now Init/DROther
2014/08/17 04:17:04 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:04 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:04 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.19 now Init/DROther
2014/08/17 04:17:04 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:04 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:04 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.53 now Init/DROther
2014/08/17 04:17:04 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:04 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:04 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.125 now Init/DROther
2014/08/17 04:17:04 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:04 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:04 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.17 now Init/DROther
2014/08/17 04:17:04 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:04 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:05 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.127 now Init/DROther
2014/08/17 04:17:05 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:05 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:05 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.42 now Init/DROther
2014/08/17 04:17:05 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:05 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:05 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.18 now Init/DROther
2014/08/17 04:17:05 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:05 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:05 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.110 now Init/DROther
2014/08/17 04:17:05 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:05 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:06 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.73 now Init/DROther
2014/08/17 04:17:06 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:06 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:08 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.21 now Init/DROther
2014/08/17 04:17:08 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:08 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:09 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.117 now Init/DROther
2014/08/17 04:17:09 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:09 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:09 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.102 now Init/DROther
2014/08/17 04:17:09 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:09 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:10 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.103 now Init/DROther
2014/08/17 04:17:10 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:10 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:12 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.47 now Init/DROther
2014/08/17 04:17:12 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:12 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:12 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.44 now Init/DROther
2014/08/17 04:17:12 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:12 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:12 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.66 now Init/DROther
2014/08/17 04:17:12 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:12 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:12 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.58 now Init/DROther
2014/08/17 04:17:12 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:12 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:12 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.22 now Init/DROther
2014/08/17 04:17:12 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:12 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:12 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.119 now Init/DROther
2014/08/17 04:17:12 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:12 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:12 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.56 now Init/DROther
2014/08/17 04:17:12 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:12 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.109 now Init/DROther
2014/08/17 04:17:13 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:13 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.57 now Init/DROther
2014/08/17 04:17:13 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:13 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.98 now Init/DROther
2014/08/17 04:17:13 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:13 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.99 now Init/DROther
2014/08/17 04:17:13 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:13 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.116 now Init/DROther
2014/08/17 04:17:13 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:13 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.105 now Init/DROther
2014/08/17 04:17:13 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:13 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.82 now Init/DROther
2014/08/17 04:17:13 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:13 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.108 now Init/DROther
2014/08/17 04:17:13 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:13 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.106 now Init/DROther
2014/08/17 04:17:13 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:13 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.126 now Init/DROther
2014/08/17 04:17:13 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:13 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.32 now Init/DROther
2014/08/17 04:17:13 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:13 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: ospfTrapNbrStateChange trap sent: 10.144.184.27 now Init/DROther
2014/08/17 04:17:13 OSPF: DR-Election[1st]: Backup 10.144.184.1
2014/08/17 04:17:13 OSPF: DR-Election[1st]: DR     10.144.184.2
2014/08/17 04:17:13 OSPF: *** sendmsg in ospf_write failed to 224.0.0.5, id 4312, off 0, len 80, interface dummy0, mtu 1500: Operation not permitted



 

 

Standard Bank email disclaimer and confidentiality note

Please go to http://www.standardbank.co.za/site/homepage/emaildisclaimer.html to read our email disclaimer and confidentiality note. Kindly email disclaimer-bhBtkFhEHeM5jVUPWmnhCVZq95QhYFEm@public.gmane.org (no content or subject line necessary) if you cannot view that page and we will email our email disclaimer and confidentiality note to you.

 

_______________________________________________
Quagga-users mailing list
Quagga-users@...
https://lists.quagga.net/mailman/listinfo/quagga-users
Ashwath Narasimhan | 12 Aug 01:05 2014

[quagga-users 13760] LDP and RSVP integration to Quagga

Hello Members!

   While browsing through the Quagga website, I found plans to integrate MPLS (LDP and RSVP) to the Quagga mainline. 
   a. Is this effort already underway?
   b. If yes, how soon can we expect to see RSVP and LDP integrated to the Quagga mainline?
   c. I am interested in contributing to this. How can I contribute to this effort?

Thanks,
Ashwath

Get your own FREE website, FREE domain & FREE mobile app with Company email.  
Know More >
_______________________________________________
Quagga-users mailing list
Quagga-users@...
https://lists.quagga.net/mailman/listinfo/quagga-users
Evert Bleijendaal | 11 Aug 10:41 2014
Picon

[quagga-users 13758] Manual editing of route-map match clauses

<!-- .hmmessage P { margin:0px; padding:0px } body.hmmessage { font-size: 12pt; font-family:Calibri } -->
Hello everyone,

I'll give some context to my question first:

I'm trying to redistribute BGP routes into OSPF using a route-map, the goal behind this is to give different OSPF metrics on routes with different local-preferences.

Using proprietary means I could configure 'match local-preference x' and be done with it, yet Quagga does not support this command (in 0.99.17).

I use BGP communities to configure the local-preference, thus I figured 'match community x' should have the same effect as 'match local-preference', yet using this command ALL routes are matched at the first sequence of the route-map.

If I check the output of 'show route-map x' (shown below), I can see that the reason behind this is that there is a BGP and a OSPF instances of this route-map and the 'match community x' is only effective in a BGP context and not OSPF.

I'm using the vtysh to edit my configurations and have not found any method to force the OSPF instance of this route-map to use 'match community x'. I'm currently using a work-around in which I create access-lists with all networks I receive and use these to match the OSPF route-map but this is both less flexible and rather configuration heavy.

Does any of you know a solution to this situation?


Here's the route-map I use:

Router# show route-map Redis_BGP_in_OSPF
ZEBRA:
route-map Redis_BGP_in_OSPF, permit, sequence 10
  Description:
  Match clauses:
  Set clauses:
  Call clause:
  Action:
    Exit routemap
route-map Redis_BGP_in_OSPF, permit, sequence 20
  Description:
  Match clauses:
  Set clauses:
  Call clause:
  Action:
    Exit routemap
OSPF:
route-map Redis_BGP_in_OSPF, permit, sequence 10
  Description:
  Match clauses:
  Set clauses:
    metric-type type-1
    metric 100
  Call clause:
  Action:
    Exit routemap
route-map Redis_BGP_in_OSPF, permit, sequence 20
  Description:
  Match clauses:
  Set clauses:
    metric-type type-1
    metric 1000
  Call clause:
  Action:
    Exit routemap
BGP:
route-map Redis_BGP_in_OSPF, permit, sequence 10
  Description:
 Match clauses:
    community 1
  Set clauses:
    metric 100
  Call clause:
  Action:
    Exit routemap
route-map Redis_BGP_in_OSPF, permit, sequence 20
  Description:
  Match clauses:
    community 2
  Set clauses:
    metric 1000
  Call clause:
  Action:
    Exit routemap

_______________________________________________
Quagga-users mailing list
Quagga-users@...
https://lists.quagga.net/mailman/listinfo/quagga-users
kai_pf | 4 Aug 17:49 2014
Picon

[quagga-users 13757] linux policy routing with quagga

Hello list!

I'd like to use the quagga bgpd on a box that already does policy routing, i.e. uses more than one routing
table on kernel level. From the documentation I undestood that the "table <tableno>" is used to direct
static zebra-routes to a specific routing table.

Question 1:
Will routes obtained by the BGP also be copied to the named kernel routing table or will they go to the default table.

Question 2:
Can I feed _two_ additional kernel routing tables with the routes learned via the BGP?

Any answer that can guide our coming experiments will be very appreciated.

(NB: We will try to combine this feature with the "bgp multiple-instance" feature.)

Best regards, Kai
Stephan von Krawczynski | 3 Aug 19:38 2014

[quagga-users 13750] Static and bgp routes replacing each other

Hello all,

is it possible to define a static route and let bgpd later on replace it by a
dynamic one - and in case the corresponding bgp peer dies - bring it back to
the static one again?

--

-- 
Regards,
Stephan
Lee Martin CCNP | 2 Aug 06:46 2014
Picon

[quagga-users 13749] how to compile bgpd independently

Hi ,

how to compile the folder of bgpd only and output a bgpd in this folder?

when compile attached file, can not see where missing separater

is it the correct way to makefile ?

wonder <at> wonder-VirtualBox:~/quagga-0.99.23/bgpd$ make
Makefile:8: *** missing separator.  Stop.
wonder <at> wonder-VirtualBox:~/quagga-0.99.23/bgpd$

CC = gcc
CFLAGS = -Wall
DEPS = bgp_mpath.h bgp_route.h bgp_advertise.h bgp_debug.h bgp_mplsvpn.h bgp_aspath.h bgpd.h bgp_snmp.h bgp_network.h bgp_attr.h bgp_dump.h bgp_table.h bgp_nexthop.h bgp_clist.h bgp_ecommunity.h bgp_vty.h bgp_open.h bgp_community.h  bgp_filter.h bgp_zebra.h bgp_packet.h bgp_damp.h bgp_fsm.h bgp_regex.h

OBJ = bgp_mpath.o bgp_route.o bgp_advertise.o bgp_debug.o  bgp_mplsvpn.o bgp_routemap.o bgp_aspath.o bgp_snmp.o bgp_network.o  bgp_attr.o bgp_dump.o bgp_table.o bgp_nexthop.o bgp_clist.o  bgp_ecommunity.o bgp_vty.o bgp_open.o bgp_community.o bgp_filter.o  bgp_zebra.o bgp_packet.o bgp_damp.o bgp_fsm.o bgp_regex.o bgpd.o bgp_main.o

%.o: %.c $(DEPS)
  $(CC) $(CFLAGS) -c -o $ <at> $<

bgpd: $(OBJ)
  gcc $(CFLAGS) -o $ <at> $^


Regards,

Martin
Attachment (Makefile): application/octet-stream, 1014 bytes
_______________________________________________
Quagga-users mailing list
Quagga-users@...
https://lists.quagga.net/mailman/listinfo/quagga-users
Lee Martin CCNP | 1 Aug 11:09 2014
Picon

[quagga-users 13745] how to connect zebra?

Hi ,

just want to simulate ISP

how to connect zebra?

telnet localhost refused

root <at> wonder-VirtualBox:/etc/quagga# cat zebra.conf
hostname zebrad
password martin123
!
interface eth0
ip address 127.0.0.1
!
interface lo
ip forwarding
!
log stdout
line vty
!

root <at> wonder-VirtualBox:/etc/quagga# /etc/init.d/quagga start
Loading capability module if not yet done.
Starting Quagga daemons (prio:10):.
root <at> wonder-VirtualBox:/etc/quagga# telnet localhost zebrad
telnet: could not resolve localhost/zebrad: Servname not supported for ai_socktype
root <at> wonder-VirtualBox:/etc/quagga# telnet localhost zebra
Trying 127.0.0.1...
telnet: Unable to connect to remote host: Connection refused

root <at> wonder-VirtualBox:/etc/quagga# telnet localhost zebra
Trying 127.0.0.1...
telnet: Unable to connect to remote host: Connection refused
root <at> wonder-VirtualBox:/etc/quagga# telnet localhost zebrad
telnet: could not resolve localhost/zebrad: Servname not supported for ai_socktype
root <at> wonder-VirtualBox:/etc/quagga#


Regards,

Martin
_______________________________________________
Quagga-users mailing list
Quagga-users@...
https://lists.quagga.net/mailman/listinfo/quagga-users
Daniel Arconada Labarga | 31 Jul 10:26 2014
Picon

[quagga-users 13744] Maximum numer lines on configuration.


Hi everyone.

We are thinking in use quagga our route servers for Blackhole source routing instead of filtering on firewalls.


The main isue that concerns us is the size of the configuration file after after configuring thousand of Ips.

This is an automatic process correlated with arcsight and sometimes send thousand of ips to the firewall to filter.

Is there any limit on file configuration size?

ip prefix-list ipsource-to-blackhole seq 10 deny any

route-map BLACKHOLE permit 20
 match ip address prefix-list ipsource-to-blackhole
 set ip next-hop 192.0.2.1
 set origin igp

route-map BLACKHOLE deny 22

This prefix-list "ipsource-to-blackhole " can grow a lot..

Daniel Arconada
Network Administrator
darconada-BlGtEEvrs+w@public.gmane.org




Chile 54 - 26007 - Logroño - La Rioja | Tel. +34 941 62 01 01 | Fax +34 941 20 47 93 | www.arsys.es
Aviso de confidencialidad - Este mensaje y sus posibles documentos adjuntos son confidenciales y están dirigidos exclusivamente a sus destinatarios. Por favor, si Ud. no es uno de ellos, notifíquenoslo y elimine el mensaje de su sistema. De conformidad con la legislación vigente, queda prohibida la copia, difusión o revelación de su contenido a terceros sin el previo consentimiento por escrito de arsys.
_______________________________________________
Quagga-users mailing list
Quagga-users@...
https://lists.quagga.net/mailman/listinfo/quagga-users

Gmane