I noticed that bgp peers in our vyatta were not coming up with their their PE connections. All settings seemed to be correct, and the interface shows U/U. The only way I could get the bgp connection to come up was to disable the sub interfaces on the vyatta, then enable it again.
Is this expected?
we’re going to need more information , what version are you using ?
is it possible to reach ipv4 configured sub-interface ?
could you share your current configuration ?
1.4-rolling-202212130326 (default boot)
I cannot ping the far end interface (10.30.20.0/31). Yes I am pinging from the correct vrf.
Below I share the config, I will share other troubleshooting I tried:
- Tried adding the configuration of the CE (vyatta) leaf first then the PE after. No change
- Tried adding the configuration of the PE leaf first then the CE (vyatta) after. No change
- Only thing that works is make sure the PE configuration is in place, then configure the vyatta, and bounce the interface.
set interfaces ethernet eth1 vif 3520 address '10.35.20.1/24'
set interfaces ethernet eth1 vif 3520 vrf 'cust20'
set interfaces ethernet eth2 hw-id '00:50:56:96:eb:8a'
set interfaces ethernet eth2 vif 3020 address '10.30.20.1/31'
set interfaces ethernet eth2 vif 3020 vrf 'cust20'
set interfaces loopback lo
set policy prefix-list cust20-network rule 1 action 'permit'
set policy prefix-list cust20-network rule 1 prefix '10.35.20.0/24'
set policy route-map cust20-import-bgp-routes rule 1 action 'permit'
set policy route-map cust20-import-bgp-routes rule 1 match ip route-source prefix-list '10.30.20.0/31'
set service ssh
set system config-management commit-revisions '100'
set system conntrack modules ftp
set system conntrack modules h323
set system conntrack modules nfs
set system conntrack modules pptp
set system conntrack modules sip
set system conntrack modules sqlnet
set system conntrack modules tftp
set system console device ttyS0 speed '115200'
set system host-name 'router'
set system login user vyos authentication encrypted-password REMOVED
set system ntp server time1.vyos.net
set system ntp server time2.vyos.net
set system ntp server time3.vyos.net
set system syslog global facility all level 'info'
set system syslog global facility protocols level 'debug'
set vrf name cust20 protocols bgp address-family ipv4-unicast network 10.35.20.0/24
set vrf name cust20 protocols bgp neighbor 10.30.20.0 address-family ipv4-unicast prefix-list export 'cust20-network'
set vrf name cust20 protocols bgp neighbor 10.30.20.0 remote-as '65250'
set vrf name cust20 protocols bgp route-map 'cust20-import-bgp-routes'
set vrf name cust20 protocols bgp system-as '65020'
set vrf name cust20 table '3020'
I not sure what is the propose this configuration ,considered in verify the network address . however , Could you try the following ? :
1- add the update-source in BGP:
set vrf name cust20 protocols bgp neighbor 10.30.20.0 update-source '10.30.20.1'
2- add router-id
set vrf name cust20 protocols bgp parameters router-id '10.30.20.1'
you should check if it’s possible to reachet from 10.30.20.1 to 10.30.20.0 , using as vrf configured :
3- ping from VRF
ping 10.30.20.0 source-address 10.30.20.1 vrf cust20
4- add this command
set vrf bind-to-all