Hi I am seeing what I believe to be a rather unstable OSPF setup. I have 1 cisco ASA 5520 (stacked) - DCFW1 4 ccr1036 - alcrtr1 alcrtr2 gsrtr1 gsrtr2 5 ROS VM's - prodrtr uatrtr testrtr simrtr wwwrtr They share a VLAN - MAN 10.31.19.0/24 - also area 0 I just happened to be doing a debug OSPF on my cisco when I think something happened. Reason I say I think, is I have placed static routes with weigthing of 250 to be used when the OSPF routes disappear. Looking at what happened on testrtr1, I am trying to find out why the sudden change, I have grabbed all the logs for around that time frame. My OSPF debugging knowledge is not that good. testrtr1 - 10.32.255.9/10.31.19.133 sep/24 08:17:13 route,ospf,info OSPFv2 neighbor 10.31.19.1: state change from 2-Way to Init sep/24 08:17:17 route,ospf,info OSPFv2 neighbor 10.33.255.2: state change from 2-Way to Init sep/24 08:17:17 route,ospf,info OSPFv2 neighbor 10.32.255.12: state change from 2-Way to Init sep/24 08:17:18 route,ospf,info OSPFv2 neighbor 10.33.255.1: state change from 2-Way to Init sep/24 08:17:19 route,ospf,info OSPFv2 neighbor 10.34.255.2: state change from Full to Init gsrtr1 10.34.255.2/10.31.19.3 sep/24 08:17:10 route,ospf,info OSPFv2 neighbor 10.32.255.9: state change from Full to Down sep/24 08:17:11 route,ospf,info Ignoring Link State Acknowledgment packet: wrong peer state sep/24 08:17:11 route,ospf,info state=Down sep/24 08:17:13 route,ospf,info Ignoring Link State Acknowledgment packet: wrong peer state sep/24 08:17:13 route,ospf,info state=Down sep/24 08:17:19 route,ospf,info Discarding packet: no neighbor with this source address sep/24 08:17:19 route,ospf,info RouterId=10.32.255.9 sep/24 08:17:19 route,ospf,info source=10.31.19.133 sep/24 08:17:24 route,ospf,info Discarding packet: no neighbor with this source address sep/24 08:17:24 route,ospf,info RouterId=10.32.255.9 sep/24 08:17:24 route,ospf,info source=10.31.19.133 sep/24 08:26:01 route,ospf,info Invalid sequence number sep/24 08:26:01 route,ospf,info mine=460801 sep/24 08:26:01 route,ospf,info received=460800 sep/24 08:26:01 route,ospf,info Discarding packet: MD5 authentication failed sep/24 08:26:01 route,ospf,info source=10.31.17.3 gsrtr2 10.34.255.2/10.31.19.3 NOTHING alcrtr1 10.33.255.1/10.31.19.66 sep/24 08:17:11 route,ospf,info OSPFv2 neighbor 10.32.255.9: state change from 2-Way to Down alcrtr2 10.33.255.2/10.31.19.67 sep/24 08:17:11 route,ospf,info OSPFv2 neighbor 10.32.255.9: state change from 2-Way to Down prodrtr 10.32.255.12/10.31.19.131 sep/24 08:17:11 route,ospf,info OSPFv2 neighbor 10.32.255.9: state change from 2-Way to Down simrtr1 10.32.255.11/10.31.19.130 nothing uatrtr1 10.32.255.10/10.31.19.129 nothing I have added in the logs from the mikrotik boxes and from the cisco Don't think there is anything special, I am using MD5 auth
From gsrtr1 /routing ospf> neighbor print where interface =MAN 0 instance=default router-id=10.32.255.13 address=10.31.19.132 interface=MAN priority=5 dr-address=10.31.19.3 backup-dr-address=10.31.19.66 state="Full" state-changes=4 ls-retransmits=0 ls-requests=0 db-summaries=0 adjacency=41m50s
1 instance=default router-id=10.34.255.3 address=10.31.19.4 interface=MAN priority=100 dr-address=10.31.19.3 backup-dr-address=10.31.19.66 state="Full" state-changes=4 ls-retransmits=0 ls-requests=0 db-summaries=0 adjacency=1h33m57s 2 instance=default router-id=10.32.255.9 address=10.31.19.133 interface=MAN priority=5 dr-address=10.31.19.3 backup-dr-address=10.31.19.66 state="Full" state-changes=4 ls-retransmits=0 ls-requests=0 db-summaries=0 adjacency=2h39m31s 3 instance=default router-id=10.31.19.1 address=10.31.19.1 interface=MAN priority=1 dr-address=10.31.19.3 backup-dr-address=10.31.19.66 state="Full" state-changes=34 ls-retransmits=0 ls-requests=0 db-summaries=0 adjacency=3h3m18s 4 instance=default router-id=10.32.255.12 address=10.31.19.131 interface=MAN priority=5 dr-address=10.31.19.3 backup-dr-address=10.31.19.66 state="Full" state-changes=12 ls-retransmits=0 ls-requests=0 db-summaries=0 adjacency=3h3m18s 5 instance=default router-id=10.32.255.11 address=10.31.19.130 interface=MAN priority=5 dr-address=10.31.19.3 backup-dr-address=10.31.19.66 state="Full" state-changes=14 ls-retransmits=0 ls-requests=0 db-summaries=0 adjacency=3h56m15s 6 instance=default router-id=10.33.255.1 address=10.31.19.66 interface=MAN priority=150 dr-address=10.31.19.3 backup-dr-address=10.31.19.66 state="Full" state-changes=33 ls-retransmits=0 ls-requests=0 db-summaries=0 adjacency=3h3m18s 7 instance=default router-id=10.32.255.10 address=10.31.19.129 interface=MAN priority=5 dr-address=10.31.19.3 backup-dr-address=10.31.19.66 state="Full" state-changes=48 ls-retransmits=0 ls-requests=0 db-summaries=0 adjacency=3h7m43s 8 instance=default router-id=10.33.255.2 address=10.31.19.67 interface=MAN priority=100 dr-address=10.31.19.3 backup-dr-address=10.31.19.66 state="Full" state-changes=42 ls-retransmits=0 ls-requests=0 db-summaries=0 adjacency=3h3m18s I have checked the Switch ports and I am not seeing any error counts. Thanks Alex
participants (1)
-
Alex Samad - Yieldbroker