Loading ...In this post, we are going to continue troubleshooting with the Trouble Ticket from Part 1 of this series. If you want to check out Part 1, just click here.
When we finished last time, we had discovered and corrected an issue with the attempt at prefix aggregation on Transylvania.
If we slide over to the Salem device (an eBGP peer of HalloweenTime), we discover that connectivity is working from there just fine.
Salem#ping 10.10.10.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.10.10.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 12/25/32 ms Salem#
Before I move one hop away to CrystalLake, I consider design issues that could be a problem. The big one that comes to mind here is next-hop reachability. The default next hop in BGP (an AS to AS protocol) is going to be the Salem-facing interface on HalloweenTown. CrystalLake needs to be able to reach that prefix in order for the BGP route(s) to be used there. Let me quickly check if CrystalLake can reach that prefix:
CrystalLake#show ip route 23.10.0.0 % Network not in table
Yes, sure enough, we are going to have issues with next hop. Let me quickly add next-hop-self to the peering with CrystalLake on Salem.
Salem(config)#router bgp 65000 Salem(config-router)#neighbor 66.150.201.21 next-hop-self
OK – now some quick tests on CrystalLake:
CrystalLake#show ip bgp BGP table version is 2, local router ID is 102.34.102.1 Status codes: s suppressed, d damped, h history, * valid, > best, i - internal, r RIB-failure, S Stale Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *>i10.10.0.0/16 66.150.201.12 0 100 0 65001 i CrystalLake#ping 10.10.10.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.10.10.1, timeout is 2 seconds: !!!!!
Excellent. One last hop to worry about. Looking at our hand drawn diagram I realize there is a design issue here, the iBGP split-horizon rule. Route-reflection is a simple solution. Let me verify there is an issue, then implement the fix.
Amityville#show ip bgp Amityville#CrystalLake(config)#router bgp 65000 CrystalLake(config-router)#neighbor 102.34.102.12 route-reflector-client Amityville#ping 10.10.10.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.10.10.1, timeout is 2 seconds: .!!!! Success rate is 80 percent (4/5), round-trip min/avg/max = 44/54/72 ms Amityville#
Success! We have solved this trouble ticket. Notice how it threw several “classic” design issues at us in one trouble ticket. To review, they were:
- Requirements for aggregation
- Proper use of the network statement
- Next-hop reachability in BGP
- The iBGP Split-Horizon rule
While these should be pretty simple for a CCIE candidate, a challenge in the Troubleshooting section is working very, very fast. You need to quickly understand the diagram (perhaps making your own as we had to do here), and then quickly doing your troubleshooting and verification steps.
I wish the real exam troobleshouting would be so easy!
Please put more posts for troubleshooting.
Thanx
Always remember with the Trouble Tickets that they will vary in degree of difficulty just like the lab tasks in the Configuration Section. Be sure to target the easier Trouble Tickets first before targeting those that might involve topics you are less familiar with.
Are we just suppose to fix whats on the TT without worrying about breaking something else in the network i.e get a list of all IPs and test full reachability from every single device after every fix. I heard there is upwards of around 30 to 40 routers in the topology. Thanks
Thanks Anthony another great effort !
The troubleshooting new session of your written BC is still missing.As you well know it is vitally important for the ones like me who will need to retake the written CCIE.
The new exam has been already active for few weeks now.Of course it will be there very soon
Regards
Hi Drew – no – they try and make the issue as independent as possible – thus all the routers!
Hi Giorgio!
You always keep me on my toes my friend!
I am adding the new lessons (Version 4) in order of importance for passing. So, for example, I have added Auto QoS and IP SLA so far because these were big on the exam I sat the week it went live.
So – I will not forget information you need….I promise.
It is not just that, I trust your judgement and the information selected by you.Technologies need to be learned but an exam needs to be passed too.I know there is a lot of work to do at INE but these are your products and they need your input.