Hi All, We have just finished building a new virtualised MT core network which is running very sweetly indeed. We have OSPF running in the core to handle redundancy between core routers, we will also run OSPF between core routers and edge routers as we do now, however in the new core we decided to use BFD to improve failover times should a problem occur. In the core network OSPF and BFD have been stable for some time, no problems, however we brought our first new site into the core last night and BFD just wouldn't come up on the link. The link comes in on a VLAN to the core, nothing fancy, just OSPF interface with BFD enabled, and OSPF Network definition. OSPF came up fine, just BFD wouldn't. BFD was still up on all other OSPF interfaces on the core router, however when we disabled BFD on the new interface to the site it took down OSPF on the entire router, same when you enable it on just that interface. We have checked MTU's and everything we can think of but BFD just won't come up on this link. We even upgraded ROS to latest bugfix on both ends of the link, no change. Firewall rules allowing OSPF protocol and BFD ports have been setup also. I'm just wondering if anybody has come across this issue before, firstly the BFD not working, but secondly the entire OSPF area going down on the router just by enabling or disabling BFD on one static OSPF interface. Thanks Paul
BFD is broken on the MTs. It doesn't bind to the source IP properly.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Paul Julian Sent: Thursday, 31 January 2019 9:32 AM To: MikroTik Australia Public List <public@talk.mikrotik.com.au> Subject: [MT-AU Public] OSPF with BFD Issues
Hi All,
We have just finished building a new virtualised MT core network which is running very sweetly indeed. We have OSPF running in the core to handle redundancy between core routers, we will also run OSPF between core routers and edge routers as we do now, however in the new core we decided to use BFD to improve failover times should a problem occur.
In the core network OSPF and BFD have been stable for some time, no problems, however we brought our first new site into the core last night and BFD just wouldn't come up on the link. The link comes in on a VLAN to the core, nothing fancy, just OSPF interface with BFD enabled, and OSPF Network definition.
OSPF came up fine, just BFD wouldn't. BFD was still up on all other OSPF interfaces on the core router, however when we disabled BFD on the new interface to the site it took down OSPF on the entire router, same when you enable it on just that interface. We have checked MTU's and everything we can think of but BFD just won't come up on this link. We even upgraded ROS to latest bugfix on both ends of the link, no change. Firewall rules allowing OSPF protocol and BFD ports have been setup also.
I'm just wondering if anybody has come across this issue before, firstly the BFD not working, but secondly the entire OSPF area going down on the router just by enabling or disabling BFD on one static OSPF interface.
Thanks Paul _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Thanks for your response Tim, so if that's the case is it a matter of allowing a different source ip in firewall rules or something to get it to connect do you know ? It is working fine in our core so it works but the access rules for inter-router communication are a little different in that enviroment, but there must be something we need to adjust, perhaps a firewall rule, to get the connection to work. Regards Paul -----Original Message----- From: Public <public-bounces@talk.mikrotik.com.au> On Behalf Of Tim Warnock Sent: Thursday, 31 January 2019 10:54 AM To: MikroTik Australia Public List <public@talk.mikrotik.com.au> Subject: Re: [MT-AU Public] OSPF with BFD Issues BFD is broken on the MTs. It doesn't bind to the source IP properly.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Paul Julian Sent: Thursday, 31 January 2019 9:32 AM To: MikroTik Australia Public List <public@talk.mikrotik.com.au> Subject: [MT-AU Public] OSPF with BFD Issues
Hi All,
We have just finished building a new virtualised MT core network which is running very sweetly indeed. We have OSPF running in the core to handle redundancy between core routers, we will also run OSPF between core routers and edge routers as we do now, however in the new core we decided to use BFD to improve failover times should a problem occur.
In the core network OSPF and BFD have been stable for some time, no problems, however we brought our first new site into the core last night and BFD just wouldn't come up on the link. The link comes in on a VLAN to the core, nothing fancy, just OSPF interface with BFD enabled, and OSPF Network definition.
OSPF came up fine, just BFD wouldn't. BFD was still up on all other OSPF interfaces on the core router, however when we disabled BFD on the new interface to the site it took down OSPF on the entire router, same when you enable it on just that interface. We have checked MTU's and everything we can think of but BFD just won't come up on this link. We even upgraded ROS to latest bugfix on both ends of the link, no change. Firewall rules allowing OSPF protocol and BFD ports have been setup also.
I'm just wondering if anybody has come across this issue before, firstly the BFD not working, but secondly the entire OSPF area going down on the router just by enabling or disabling BFD on one static OSPF interface.
Thanks Paul _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Packet capture is your friend :) Wireshark knows about BFD and will hopefully show you exactly what you need for your specific network. Regards, Philip Loenneker | Network Engineer | TasmaNet -----Original Message----- From: Public <public-bounces@talk.mikrotik.com.au> On Behalf Of Paul Julian Sent: Thursday, 31 January 2019 11:05 AM To: 'MikroTik Australia Public List' <public@talk.mikrotik.com.au> Subject: Re: [MT-AU Public] OSPF with BFD Issues Thanks for your response Tim, so if that's the case is it a matter of allowing a different source ip in firewall rules or something to get it to connect do you know ? It is working fine in our core so it works but the access rules for inter-router communication are a little different in that enviroment, but there must be something we need to adjust, perhaps a firewall rule, to get the connection to work. Regards Paul -----Original Message----- From: Public <public-bounces@talk.mikrotik.com.au> On Behalf Of Tim Warnock Sent: Thursday, 31 January 2019 10:54 AM To: MikroTik Australia Public List <public@talk.mikrotik.com.au> Subject: Re: [MT-AU Public] OSPF with BFD Issues BFD is broken on the MTs. It doesn't bind to the source IP properly.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Paul Julian Sent: Thursday, 31 January 2019 9:32 AM To: MikroTik Australia Public List <public@talk.mikrotik.com.au> Subject: [MT-AU Public] OSPF with BFD Issues
Hi All,
We have just finished building a new virtualised MT core network which is running very sweetly indeed. We have OSPF running in the core to handle redundancy between core routers, we will also run OSPF between core routers and edge routers as we do now, however in the new core we decided to use BFD to improve failover times should a problem occur.
In the core network OSPF and BFD have been stable for some time, no problems, however we brought our first new site into the core last night and BFD just wouldn't come up on the link. The link comes in on a VLAN to the core, nothing fancy, just OSPF interface with BFD enabled, and OSPF Network definition.
OSPF came up fine, just BFD wouldn't. BFD was still up on all other OSPF interfaces on the core router, however when we disabled BFD on the new interface to the site it took down OSPF on the entire router, same when you enable it on just that interface. We have checked MTU's and everything we can think of but BFD just won't come up on this link. We even upgraded ROS to latest bugfix on both ends of the link, no change. Firewall rules allowing OSPF protocol and BFD ports have been setup also.
I'm just wondering if anybody has come across this issue before, firstly the BFD not working, but secondly the entire OSPF area going down on the router just by enabling or disabling BFD on one static OSPF interface.
Thanks Paul _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Thanks Philip, yep I think that's the next stop in this one, problem is we now have to take the site down to do more testing ☹ The issue with ALL OSPF sessions dropping on the core router when BFD was enabled and disabled on that one interface is a concern though, that just shouldn't happen. Regards Paul -----Original Message----- From: Public <public-bounces@talk.mikrotik.com.au> On Behalf Of Philip Loenneker Sent: Thursday, 31 January 2019 11:36 AM To: MikroTik Australia Public List <public@talk.mikrotik.com.au> Subject: Re: [MT-AU Public] OSPF with BFD Issues Packet capture is your friend :) Wireshark knows about BFD and will hopefully show you exactly what you need for your specific network. Regards, Philip Loenneker | Network Engineer | TasmaNet -----Original Message----- From: Public <public-bounces@talk.mikrotik.com.au> On Behalf Of Paul Julian Sent: Thursday, 31 January 2019 11:05 AM To: 'MikroTik Australia Public List' <public@talk.mikrotik.com.au> Subject: Re: [MT-AU Public] OSPF with BFD Issues Thanks for your response Tim, so if that's the case is it a matter of allowing a different source ip in firewall rules or something to get it to connect do you know ? It is working fine in our core so it works but the access rules for inter-router communication are a little different in that enviroment, but there must be something we need to adjust, perhaps a firewall rule, to get the connection to work. Regards Paul -----Original Message----- From: Public <public-bounces@talk.mikrotik.com.au> On Behalf Of Tim Warnock Sent: Thursday, 31 January 2019 10:54 AM To: MikroTik Australia Public List <public@talk.mikrotik.com.au> Subject: Re: [MT-AU Public] OSPF with BFD Issues BFD is broken on the MTs. It doesn't bind to the source IP properly.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Paul Julian Sent: Thursday, 31 January 2019 9:32 AM To: MikroTik Australia Public List <public@talk.mikrotik.com.au> Subject: [MT-AU Public] OSPF with BFD Issues
Hi All,
We have just finished building a new virtualised MT core network which is running very sweetly indeed. We have OSPF running in the core to handle redundancy between core routers, we will also run OSPF between core routers and edge routers as we do now, however in the new core we decided to use BFD to improve failover times should a problem occur.
In the core network OSPF and BFD have been stable for some time, no problems, however we brought our first new site into the core last night and BFD just wouldn't come up on the link. The link comes in on a VLAN to the core, nothing fancy, just OSPF interface with BFD enabled, and OSPF Network definition.
OSPF came up fine, just BFD wouldn't. BFD was still up on all other OSPF interfaces on the core router, however when we disabled BFD on the new interface to the site it took down OSPF on the entire router, same when you enable it on just that interface. We have checked MTU's and everything we can think of but BFD just won't come up on this link. We even upgraded ROS to latest bugfix on both ends of the link, no change. Firewall rules allowing OSPF protocol and BFD ports have been setup also.
I'm just wondering if anybody has come across this issue before, firstly the BFD not working, but secondly the entire OSPF area going down on the router just by enabling or disabling BFD on one static OSPF interface.
Thanks Paul _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
participants (3)
-
Paul Julian
-
Philip Loenneker
-
Tim Warnock