i am getting owned trying to do dynamic route leaking between vrf’s using ospf. this is routeros 7.18.
for a basic topology:
i have created bridge1 interface in vrf1, ip address 192.168.1.1/24
i have created bridge2 interface in vrf2, ip address 192.168.2.1/24
i have attached a sub-interface to bridge1, also added to vrf1, ip address 10.0.0.1/29
i have attached a sub-interface to bridge2, in vrf2, ip address 10.0.0.2/29
now the ospf part is not that technical. the issue is, i am trying to form a neighborship on the 10.0.0.0/29 network, and failing. cause somehow, the two vlan interfaces on 10.0.0.0/29 can’t talk to each other on the ospf broadcast address.
how do i achieve this last leg? adding each sub-interface to a bridge results in nothing helpful at all. somehow, i need l2 connectivity between the two sub-interfaces.
Make a network diagram and show whatever configuration you currently have so that others can jump start to check your config and might be able help you in the process, specially VRF has few quirks and limitation in Mikrotik land haha
EDIT: additional tip please define your clear goals it is somehow messed up honestly
You might want to try a “hairpin” physical cable first between port in different VRFs to see if the OSPF portion will work. Not sure if routeros will form an adjacency with itself. ROSv6 had issues with this, but i’ve not tried it in ROSv7.
I thought the requirement is hazy when I see Kevin reply and re-read it was me who doesn’t understand the question and I try to lab it yeah it works it form an adjacency to it’s own now my question is what is the circumstance that you are doing this in real world setting? I really enjoy it looking forward to hear from both of you
I think I got one scenario if you are an SP and want to provide multitenancy for customers hahaha or you want to create an isolated lab the possibility is endless.
fell free to laugh, but basically, bgp-vpn is still above my head as i’m learning networking, and a physical cable to do ospf isn’t. so there you go
and basically, it’s as the title suggets, i was trying to get an easier way to do route leaking between vrfs. a hairpin cable on the appliance might be amusing, but it gets the job done until i learn to do better.
Don’t get me wrong, I really enjoy this thread because it’s broaden my horizon I laugh not because of you it’s me who didn’t think outside of the box, I’m sorry if you feel offended i didn’t mean to, peace out!
no worries! maybe you could even help me with the correct syntax for only advertising only certain routes into vrf1 cause right now, ospf is advertising everything and not obeying my filter rule of if (dst == 10.1.60.0/23) { accept;} else{reject;} for some reason. i’m trying to do Out-Filter with it.
VRF route leaking is freaking awesome if you grasp the concept, it was really confusing at first but this is very powerful if you want to slice and dice the hardware
yes. the vrf part is working. i have traffic flow everywhere.
it’s the route filtering i am having a problem with. and even watching the official mikrotik youtube on ospf, and following the route filtering section, i’m not having any luck.
cause right now, ospf is advertising everything and not obeying my filter rule of