On 06/02/2008, Justin Fletcher <[EMAIL PROTECTED]> wrote:
> Ah - my mistake in terminology translation :-)
>
> Since is IS running through the router, turn on tshark on one of the
> router interfaces, & see what's on the (virtual) wire when you start a ping.
> Does the router even see it inbound through the virtual switch?
Well after doing some tcpdump's on either side of each router it looks
like the ping requests are getting through all the way to the public
side and are not responding. So there must be a routing issue within
the public side not coming back. I guess I will have to investigate
further.
Thanks for your help.
>
> Justin
>
> On Feb 6, 2008 5:05 AM, Joe Pub <[EMAIL PROTECTED]> wrote:
> > I think I have a problem with some OSPF routing. I have a small
> > network setup (see attached image) which uses 2 OSPF areas, with 3
> > subnets. I have a LAN subnet (192.168.10.0/23, Area 0.0.0.1) and a
> > DMZ subnet (172.20.0.0/23, Area 0.0.0.0) and a public subnet which is
> > not configured using OSPF.
> >
> > I can connect and ping nodes from LAN <------> DMZ no problem and can
> > also ping from DMZ <-----> Public no problem. But when I try to ping
> > and connect to machines within my own public range LAN <-----> Public
> > I have some connectivity issues. Pings will take a while and time
> > out, then eventually (2 - 10 seconds) it's like OSPF has figured how
> > to get there and they works. If them hosts then have not been
> > contacted in a while since it started working, I have the ping and
> > connectivity problems again.
> >
> > Does anyone have any idea where I might be going wrong here?
> >
> > protocol config for the both internal routers below with respective
> > OSPF and routing tables. If you need further information please let
> > me know.
> >
> > Thank for the help.
> >
> > ---------------------------------------------------
> >
> > protocols {
> > ospf4 {
> > router-id: 10.1.1.1
> > rfc1583-compatibility: false
> > ip-router-alert: false
> > area 0.0.0.0 {
> > area-type: "normal"
> > interface eth1 {
> > link-type: "broadcast"
> > address 172.20.1.251 {
> > priority: 128
> > hello-interval: 10
> > router-dead-interval: 40
> > interface-cost: 1
> > retransmit-interval: 5
> > transit-delay: 1
> > passive: false
> > disable: false
> > }
> > }
> > }
> > area 0.0.0.1 {
> > area-type: "normal"
> > interface eth0 {
> > link-type: "broadcast"
> > address 192.168.11.253 {
> > priority: 128
> > hello-interval: 10
> > router-dead-interval: 40
> > interface-cost: 1
> > retransmit-interval: 5
> > transit-delay: 1
> > passive: false
> > disable: false
> > }
> > }
> > }
> > }
> > static {
> > disable: false
> > }
> > }
> >
> > Routes: 8/8, Paths: 8/8
> > 0.0.0.0/0 [ospf(1)] > to 172.20.1.253 via eth1
> > 10.1.1.1/32 [connected(0)] > to 10.1.1.1
> > via lo
> > 10.1.1.3/32 [ospf(2)] > to 172.20.1.253 via
> > eth1
> > 10.1.1.4/32 [ospf(2)] > to 172.20.1.252 via
> > eth1
> > 127.0.0.0/8 [connected(0)] > to 127.0.0.1
> > via lo
> > 172.20.0.0/23 [connected(0)] > to 172.20.1.251
> > via eth1
> > 192.168.10.0/23 [connected(0)] > to
> > 192.168.11.253 via eth0
> > 192.168.11.254/32 [connected(0)] > to 192.168.11.254
> > via eth0
> >
> > --------------------------------------------------------------------------------
> >
> > protocols {
> > ospf4 {
> > router-id: 10.1.1.2
> > rfc1583-compatibility: false
> > ip-router-alert: false
> > area 0.0.0.0 {
> > area-type: "normal"
> > interface eth1 {
> > link-type: "broadcast"
> > address 172.20.1.250 {
> > priority: 128
> > hello-interval: 10
> > router-dead-interval: 40
> > interface-cost: 1
> > retransmit-interval: 5
> > transit-delay: 1
> > passive: false
> > disable: false
> > }
> > }
> > }
> > area 0.0.0.1 {
> > area-type: "normal"
> > interface eth0 {
> > link-type: "broadcast"
> > address 192.168.11.252 {
> > priority: 128
> > hello-interval: 10
> > router-dead-interval: 40
> > interface-cost: 1
> > retransmit-interval: 5
> > transit-delay: 1
> > passive: false
> > disable: false
> > }
> > }
> > }
> > }
> > static {
> > disable: true
> > }
> > }
> >
> >
> > Routes: 7/7, Paths: 7/7
> > 0.0.0.0/0 [ospf(1)] > to 172.20.1.253 via eth1
> > 10.1.1.2/32 [connected(0)] > to 10.1.1.2
> > via lo
> > 10.1.1.3/32 [ospf(2)] > to 172.20.1.253 via
> > eth1
> > 10.1.1.4/32 [ospf(2)] > to 172.20.1.252 via
> > eth1
> > 127.0.0.0/8 [connected(0)] > to 127.0.0.1
> > via lo
> > 172.20.0.0/23 [connected(0)] > to 172.20.1.250
> > via eth1
> > 192.168.10.0/23 [ospf(2)] > to 172.20.1.251
> > via eth1
> >
> > _______________________________________________
> > Vyatta-users mailing list
> > Vyatta-users@mailman.vyatta.com
> > http://mailman.vyatta.com/mailman/listinfo/vyatta-users
> >
> >
>
_______________________________________________
Vyatta-users mailing list
Vyatta-users@mailman.vyatta.com
http://mailman.vyatta.com/mailman/listinfo/vyatta-users
