On 09/03/13 14:50, Stuart Henderson wrote:
On 2012-11-16, Matt Hamilton <[email protected]> wrote:
Hi All,
From what I've read previously I've seen that ospfd will advertise
routes on carp interfaces that are in the BACKUP state. Is this
still the case these days with 5.2? Whilst I'm sure I can do some
magic with ifstated, I just wanted to make sure I'm not solving
something that is already fixed.
Yes, the routes to carp interfaces in BACKUP are advertised but with a
low priority (better to have the route stay in the table, even if it goes
to a backup firewall, rather than have it drop in and out).
Sorry to jump in, but Stuart are we sure about this?
In a current setup only the active firewall (carp master) is advertising
the network.
router-id 10.0.0.2
fib-update yes
stub router no
metric 100
#redistribute connected
redistribute static
area 0.0.0.0 {
interface trunk0 {
auth-type crypt
auth-md XXXXXXX
auth-md-keyid XX
}
interface carp8 {passive}
}
carp8: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
carp: MASTER carpdev vlan8 vhid 8 advbase 1 advskew 0
inet6 fe80::200:5eff:fe00:108%carp8 prefixlen 64 scopeid 0xd
inet 10.1.1.1 netmask 0xffffff00 broadcast 10.1.1.255
vlan8: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
vlan: 8 parent interface: trunk1
inet6 fe80::21b:21ff:fe95:2deb%vlan8 prefixlen 64 scopeid 0xc
carp8 has the inet address. On backup firewall (10.0.0.3)
the setup is similar (except metric 101)
On remote Cisco router I have:
cisco#show ip route 10.1.1.0
Routing entry for 10.1.1.0/24
Known via "ospf 1", distance 110, metric 101, type intra area
Last update from 10.0.0.2 on VlanXX, 2d20h ago
Routing Descriptor Blocks:
* 10.0.0.1, from 10.0.0.2, 2d20h ago, via VlanXX
Route metric is 101, traffic share count is 1
Route to backup firewall is not listed.
cisco# show ip ospf database router adv-router 10.0.0.2 (primary)
Link connected to: a Stub Network
(Link ID) Network/subnet number: 10.1.1.0
(Link Data) Network Mask: 255.255.255.0
Number of TOS metrics: 0
TOS 0 Metrics: 100
Link connected to: a Transit Network
(Link ID) Designated Router address: 10.0.0.1
(Link Data) Router Interface address: 10.0.0.2
Number of TOS metrics: 0
TOS 0 Metrics: 100
cisco# show ip ospf database router adv-router 10.0.0.3 (backup)
Link connected to: a Transit Network
(Link ID) Designated Router address: 10.0.0.1
(Link Data) Router Interface address: 10.0.0.3
Number of TOS metrics: 0
TOS 0 Metrics: 101
If I do carpdemote and change active firewall, then the situation is
reversed.
In advance I still cannot add carp interfaces (carpXX) to a different
area except 0.0.0.0
http://marc.info/?l=openbsd-misc&m=136267654831883&w=2
Giannis
