You are on page 1of 31

Configuring Route Optimizations

Martin Brown
NETWORK SECURITY ENGINEER

@martinbrown2k
Our Lab Environment

ge-0/0/2 ge-0/0/3

‘SRX-04’
ge-0/0/0 ge-0/0/1

fe-0/0/1 SRX-03 fe-0/0/1

fe-0/0/7 fe-0/0/7
fe-0/0/0 fe-0/0/0

SRX-01 SRX-02
Our New Lab Environment

ge-0/0/0 ge-0/0/2

fe-0/0/1 ge-0/0/3
SRX-03
fe-0/0/7
SRX-01 ‘SRX-04’
192.168.100.0/24
192.168.150.0/24
fe-0/0/0 SRX-02 ge-0/0/1 192.168.200.0/24
192.168.250.0/24
fe-0/0/0 fe-0/0/1

fe-0/0/7
Expected Traffic Flow

ge-0/0/0 ge-0/0/2

fe-0/0/1 ge-0/0/3
SRX-03
fe-0/0/7
SRX-01 ‘SRX-04’
192.168.100.0/24
192.168.150.0/24
fe-0/0/0 SRX-02 ge-0/0/1 192.168.200.0/24
192.168.250.0/24
fe-0/0/0 fe-0/0/1

fe-0/0/7
Actual Traffic Flow

ge-0/0/0 ge-0/0/2

fe-0/0/1 ge-0/0/3
SRX-03
fe-0/0/7
SRX-01 ‘SRX-04’
192.168.100.0/24
192.168.150.0/24
fe-0/0/0 SRX-02 ge-0/0/1 192.168.200.0/24
192.168.250.0/24
fe-0/0/0 fe-0/0/1

fe-0/0/7
Reference Bandwidth

Used to calculate OSPF cost


- reference bandwidth / link bandwidth

Cost must be a whole number


Default reference bandwidth is 100Mbps
Links above 100Mbps have a cost of 1
Reference Bandwidth Change

Configure the reference bandwidth


On SRX-01, 02, 03 and 04
- Set the reference bandwidth to 10Gbps

Check the routing table on SRX-01


Current Traffic Flow

ge-0/0/0 ge-0/0/2

fe-0/0/1 ge-0/0/3
SRX-03
fe-0/0/7
SRX-01 ‘SRX-04’
192.168.100.0/24
192.168.150.0/24
fe-0/0/0 SRX-02 ge-0/0/1 192.168.200.0/24
192.168.250.0/24
fe-0/0/0 fe-0/0/1

fe-0/0/7
Temporary Desired Traffic Flow

ge-0/0/0 ge-0/0/2

fe-0/0/1 ge-0/0/3
SRX-03
fe-0/0/7
SRX-01 ‘SRX-04’
192.168.100.0/24
192.168.150.0/24
fe-0/0/0 SRX-02 ge-0/0/1 192.168.200.0/24
192.168.250.0/24
fe-0/0/0 fe-0/0/1

fe-0/0/7
Interface Metric

Cost is calculated from link bandwidth


Changing link speed affects cost
Cost can be set manually
This does not affect actual link speed
Possibility of asymmetric routing
- Cost must be set on all routers
Asymmetric Routing

ge-0/0/0 ge-0/0/2

fe-0/0/1 ge-0/0/3
SRX-03
fe-0/0/7
SRX-01 ‘SRX-04’
192.168.100.0/24
192.168.150.0/24
fe-0/0/0 SRX-02 ge-0/0/1 192.168.200.0/24
192.168.250.0/24
fe-0/0/0 fe-0/0/1

fe-0/0/7
Change Reported Metric

ACME want to divert traffic temporarily


SRX-03 must be avoided
On SRX-01:
- Set the cost of fe-0/0/1.0 to 1000

On SRX-03
- Set the cost of ge-0/0/0.0 to 1000

Check the routing table of SRX-01


Our Lab Environment

ge-0/0/0 ge-0/0/2

fe-0/0/1 ge-0/0/3
SRX-03
fe-0/0/7
SRX-01 ‘SRX-04’
192.168.100.0/24
192.168.150.0/24
fe-0/0/0 SRX-02 ge-0/0/1 192.168.200.0/24
192.168.250.0/24
fe-0/0/0 fe-0/0/1

fe-0/0/7
Our Lab Environment

ge-0/0/0 ge-0/0/2

fe-0/0/1 ge-0/0/3
SRX-03
fe-0/0/7
SRX-01 ‘SRX-04’
192.168.100.0/24
192.168.150.0/24
fe-0/0/0 SRX-02 ge-0/0/1 192.168.200.0/24
192.168.250.0/24
fe-0/0/0 fe-0/0/1

fe-0/0/7
Our Lab Environment
Area 0 SRX-03 ‘SRX-04’
ge-0/0/2
ge-0/0/0 ge-0/0/3
fe-0/0/1
192.168.100.0/24
fe-0/0/7 SRX-01 192.168.150.0/24
192.168.200.0/24
Area 1 192.168.250.0/24
SRX-02
fe-0/0/0
fe-0/0/0
fe-0/0/7
Subnet Allocation
Corporate IP addressing is strategic
Subnets are not allocated at random
Most companies use subnets from a range
- 10.0.0.0/24 to 10.100.100.0/24
- 192.168.1.0/24 to 192.168.200.0/24

These ranges are broken into small ranges


- 10.0.0.0/24 to 10.0.15.0/24
- 10.100.0.0/24 to 10.100.31.0/24

Buildings or branches use these smaller


ranges
Corporate IP Addressing
192.168.0.0/24
172.16.0.0/24 to
to 192.168.7.0/24
172.16.31.0/24
Branch Office
Building A

172.16.64.0/24
172.16.32.0/24 to
to 172.16.127.0/24
172.16.63.0/24
Building C
Building B
Corporate IP Addressing
192.168.0.0/21
172.16.0.0/19

Branch Office
Building A

172.16.64.0/18
172.16.32.0/19

Building C
Building B
Configure Area Summarization
ACME want to optimize the LSDB
Routes into area 1 should be summarized
Partial summarization of SRX-04’s routes
On SRX-01 summarize the subnets:
- 192.168.150.0/24
- 192.168.200.0/24
- 192.168.250.0/24

The routes should be summarized to:


- 192.168.128.0/17

Check the routing table of SRX-02


Configuring Area Summarization
Area 0 SRX-03 ‘SRX-04’
ge-0/0/2
ge-0/0/0 ge-0/0/3
fe-0/0/1
192.168.100.0/24
fe-0/0/7 SRX-01 192.168.150.0/24
192.168.200.0/24
Area 1 192.168.250.0/24
SRX-02
fe-0/0/0
fe-0/0/0
192.168.100.0/24 fe-0/0/7
192.168.128.0/17
Troubleshooting OSPF
Junos OS has many services
Most services have “show” commands
These display system “health”
These commands are used:
- During a build
- Post build

Show commands have additional options


- Brief
- Detail
- Extensive
OSPF “Show” Commands

“show ospf neighbors”


Displays the OSPF neighbor list
Also includes:
- Adjacency state
- Router ID
- Neighbor priority
- Dead time remaining

Extensive includes DR and BDR details


OSPF “Show” Commands
“show ospf database”
Displays subnets stored in the LSDB
Information includes:
- LSA type
- Advertising router
- Age

Extensive includes:
- When route was installed
- Age timer
- Metric
OSPF “Show” Commands
“show ospf interfaces”
Lists OSPF AS interfaces
Also Includes:
- Area ID
- DR
- BDR
- State

Extensive details:
- Timers
- MTU
- Cost
OSPF “Show” Commands
“show ospf route”
Lists subnet information along with:
- Path type
- Route type
- Metric
- Next-hop
- Exit interface

Extensive adds:
- Origin area
- Originating router
OSPF “Show” Commands

“show ospf statistics”


Lists packet types and number sent
Includes error statistics
Does not have extensive option
OSPF “Show” Commands

“show ospf log”


Lists when an OSPF event occurred
Includes how long the process took
No extensive option
Junos OS Log Files
Logs files capture errors and events
They are essential to troubleshooting
Junos OS logs are “Syslog” messages
A local log file is created by default
- Messages

Syslog has 8 logging levels


The default logging level is “critical”
- Logging level 2

Logs can be viewed in real-time


Syslog Logging Levels
Debugging OSPF
“Show” commands give an overview
Debugging provides in-depth logging
Individual processes can be targeted
- flags

Results are saved to a file


- /var/logs

Logs can also be viewed in real time


Junos OS calls debugging ‘tracing’
OSPF trace ‘flags’ have 3 further options
- Detail, send, receive
Basics of OSPF
SPF algorithm

Summary LSDB and SPF database


How OSPF makes friends
How the topology is built
Configuring OSPF
Customizing OSPF
“show” commands
OSPF tracing

You might also like