I have been testing out v7.5. I tried to implement a L3VPN setup. Either I am doing something wrong or Mikrotik has not developed yet the code correctly.
I noticed when I enable the ibgp-rr role on the RR router tx-messages and rx-messages go crazy, it's like bgp looping some how.
If someone could take a look at my exports and tell If it is a mikrotik bug, or if I am mistaken.
Thank you in advance...
The setup is:
BGP-1--ether1------ether1--BGP-RR--ether2--------ether2--BGP-2
Route Reflector:
Code: Select all
[admin@BGP_RR] > export
# sep/16/2022 13:50:35 by RouterOS 7.5
# software id =
#
/interface bridge
add name=Loopback protocol-mode=none
/interface ethernet
set [ find default-name=ether1 ] name=ether1_to_BGP1
set [ find default-name=ether2 ] name=ether2_to_BGP2
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/port
set 0 name=serial0
/routing ospf instance
add disabled=no name=ospf-instance-1
/routing ospf area
add disabled=no instance=ospf-instance-1 name=ospf-area-1
/routing bgp template
set default address-families=vpnv4 as=65600 disabled=no routing-table=main
/ip address
add address=3.3.3.3 interface=Loopback network=3.3.3.3
add address=172.1.3.2/30 interface=ether1_to_BGP1 network=172.1.3.0
add address=172.2.3.2/30 interface=ether2_to_BGP2 network=172.2.3.0
/ip dhcp-client
add interface=ether1_to_BGP1
/mpls ldp
add disabled=no lsr-id=3.3.3.3 transport-addresses=3.3.3.3
/mpls ldp interface
add disabled=no interface=ether1_to_BGP1 transport-addresses=""
add disabled=no interface=ether2_to_BGP2 transport-addresses=""
/routing bgp connection
add disabled=no local.address=3.3.3.3 .role=ibgp-rr name=bgp1 remote.address=\
1.1.1.1/32 .as=65600 routing-table=main templates=default
add disabled=no local.address=3.3.3.3 .role=ibgp-rr name=bgp2 remote.address=\
2.2.2.2/32 .as=65600 routing-table=main templates=default
/routing ospf interface-template
add area=ospf-area-1 disabled=no interfaces=Loopback networks=3.3.3.3/32 \
passive
add area=ospf-area-1 disabled=no interfaces=ether1_to_BGP1,ether2_to_BGP2 \
networks=172.1.3.0/30,172.2.3.0/30 type=ptp
/system identity
set name=BGP_RR
BGP_1:
Code: Select all
[admin@BGP1] > export
# sep/16/2022 13:50:16 by RouterOS 7.5
# software id =
#
/interface bridge
add name=Loopback protocol-mode=none
/interface ethernet
set [ find default-name=ether1 ] name=ether1_to_RR
set [ find default-name=ether3 ] name=ether3_CUST_A
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip vrf
add interfaces=ether3_CUST_A name=cust_a
/port
set 0 name=serial0
/routing ospf instance
add disabled=no name=ospf-instance-1
/routing ospf area
add disabled=no instance=ospf-instance-1 name=ospf-area-1
/routing bgp template
set default address-families=vpnv4 as=65600 disabled=no routing-table=main
/ip address
add address=1.1.1.1 interface=Loopback network=1.1.1.1
add address=172.1.3.1/30 interface=ether1_to_RR network=172.1.3.0
add address=192.168.1.1/24 interface=ether3_CUST_A network=192.168.1.0
/ip dhcp-client
add interface=ether1_to_RR
/mpls ldp
add disabled=no lsr-id=1.1.1.1 transport-addresses=1.1.1.1
/mpls ldp interface
add disabled=no interface=ether1_to_RR transport-addresses=""
/routing bgp connection
add disabled=no local.address=1.1.1.1 .role=ibgp-rr-client name=bgp1 \
remote.address=3.3.3.3/32 .as=65600 routing-table=main templates=default
/routing bgp vpn
add disabled=no export-route-targets=1.1.1.1:1 import-route-targets=1.1.1.1:1 \
label-allocation-policy=per-vrf redistribute=connected route-distinguisher=\
1.1.1.1:1 vrf=cust_a
/routing ospf interface-template
add area=ospf-area-1 disabled=no interfaces=Loopback networks=1.1.1.1/32 \
passive
add area=ospf-area-1 disabled=no interfaces=ether1_to_RR networks=172.1.3.0/30 \
type=ptp
/system identity
set name=BGP1
BGP_2
Code: Select all
[admin@BGP_2] > export
# sep/16/2022 13:49:33 by RouterOS 7.5
# software id =
#
/interface bridge
add name=Loopback protocol-mode=none
/interface ethernet
set [ find default-name=ether2 ] name=ether2_to_RR
set [ find default-name=ether3 ] name=ether3_CustA
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip vrf
add interfaces=ether3_CustA name=cust_a
/port
set 0 name=serial0
/routing ospf instance
add disabled=no name=ospf-instance-1
/routing ospf area
add disabled=no instance=ospf-instance-1 name=ospf-area-1
/routing bgp template
set default address-families=vpnv4 as=65600 disabled=no routing-table=main
/ip address
add address=2.2.2.2 interface=Loopback network=2.2.2.2
add address=172.2.3.1/30 interface=ether2_to_RR network=172.2.3.0
add address=192.168.2.1/24 interface=ether3_CustA network=192.168.2.0
/ip dhcp-client
add interface=ether1
/mpls ldp
add disabled=no lsr-id=2.2.2.2 transport-addresses=2.2.2.2
/mpls ldp interface
add disabled=no interface=ether2_to_RR transport-addresses=""
/routing bgp connection
add address-families=vpnv4 as=65600 disabled=no local.address=2.2.2.2 .role=\
ibgp-rr-client name=bgp1 remote.address=3.3.3.3/32 .as=65600 routing-table=\
main
/routing bgp vpn
add disabled=no export-route-targets=1.1.1.1:1 import-route-targets=1.1.1.1:1 \
label-allocation-policy=per-vrf redistribute=connected route-distinguisher=\
1.1.1.1:1 vrf=cust_a
/routing ospf interface-template
add area=ospf-area-1 disabled=no interfaces=Loopback networks=2.2.2.2/32 \
passive
add area=ospf-area-1 disabled=no interfaces=ether2_to_RR networks=172.2.3.0/30 \
type=ptp
/system identity
set name=BGP_2