Solved

Mikrotik BGP Problem

Posted on 2007-03-22
9
2,215 Views
Last Modified: 2013-12-23
I configured a new hardware with RouterOS 2.9.41 and the same configuration that the other MK that works fine.
With the original router all works great, it have RouterOS 2.9.30.
When connect the new hardware with the same configuration, 4 of 6 bgp peer doesn´t established the connection:

Example:

name="PEER1" instance=default remote-address=200.XX.17.1 remote-as=11XXX tcp-md5-key="" nexthop-choice=default multihop=no route-reflect=no hold-time=3m ttl=1 in-filter="" out-filter=filter-peer1-out remote-id=0.0.0.0 remote-hold-time=0s used-hold-time=0s used-keepalive-time=0s state=active

07:22:57 route,bgp,info Failed to open TCP connection: No route to host
07:22:57 route,bgp,info RemoteAddr=200.xx.17.1
07:22:57 route,bgp,info RemotePort=179
07:23:17 route,bgp,debug,timer ConnectRetryTimer expired
07:23:17 route,bgp,debug,timer RemoteAddr=200.xx.17.1
07:23:17 route,bgp,debug Connecting
07:23:17 route,bgp,debug RemoteAddr=200.xx.17.1
07:23:17 route,bgp,debug RemotePort=179
07:23:17 route,bgp,debug,state Entering Connect state
07:23:17 route,bgp,debug,state RemoteAddr=200.xx.17.1
07:23:17 route,bgp,info Failed to open TCP connection: No route to host
07:23:17 route,bgp,info RemoteAddr=200.xx.17.1
07:23:17 route,bgp,info RemotePort=179
07:23:17 route,bgp,debug,state Entering Active state
07:23:17 route,bgp,debug,state RemoteAddr=200.xx.17.1
07:23:19 route,bgp,debug,timer KeepaliveTimer expired

Thanks .-
0
Comment
Question by:Intermediasp
  • 5
  • 4
9 Comments
 
LVL 61

Expert Comment

by:gheist
ID: 18778403
First of all remove all obfuscated addresses from your output.
And post your routing table without BGP started. (netstat -nr or route -n show)
0
 

Author Comment

by:Intermediasp
ID: 18779144
Gheist, I can´t understand you very well.
Can you explained what you mean with obfuscated addresses ?, remember that I use Mikrotik RouterOS

Thanks
0
 
LVL 61

Expert Comment

by:gheist
ID: 18783267
You gave syntactically invalid IP adresses. No-one except you or your peers can diagnose problem at your site.

%host 200.xx.17.1
Host 200.xx.17.1 not found: 3(NXDOMAIN)
%traceroute 200.xx.17.1
traceroute: unknown host 200.xx.17.1

First of all - can you ping at least one BGP peer from your new router?
0
 
LVL 61

Expert Comment

by:gheist
ID: 18783404
/lib/modules/2.4.31 in initrd.rgz filesystem reminds of Linux kernel v2.4.31
that looks like custom shell running above that. and it asks me for key, so I delete it.
We are solving BGP connectivity problem, not RouterOS config problem.
Quick answer on OS/kay problem is - go install OpenBSD and Zebra, and it will work.
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 

Author Comment

by:Intermediasp
ID: 18788912
No gheist, I can´t ping the peer ..., I´m thinking about layer 1/2 problem, can it be ?
0
 
LVL 61

Expert Comment

by:gheist
ID: 18790809
Yes - there is lower layer problem.
0
 

Author Comment

by:Intermediasp
ID: 18791808
Yes, when monitoring link status I saw "link-ok" and them "no-link", I supposed that the problem is the 3COM cards, could it be ??
0
 
LVL 61

Accepted Solution

by:
gheist earned 500 total points
ID: 18793327
Yes - that's it. Link down means dropping route to peer, with all consequences.
First check cabling. And ethernet switches.
If you run gigabit, then cat5 cables create quite a mess...
0
 

Author Comment

by:Intermediasp
ID: 18798766
This was a problem ...., thanks a lot !
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Lets look at the default installation and configuration of FreeProxy 4.10 REQUIREMENTS 1. FreeProxy 4.10 Application - Can be downloaded here (http://www.handcraftedsoftware.org/index.php?page=download) 2. Ensure that you disable the windows fi…
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now