WannaCry is just the start. Read how Liquid Web is protecting itself and its customers against new threats.
Course Of The Month
7 days, 14 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Understanding Passive interface in EIGRP
Posted on 2013-01-01
I need to give an example in order to understand Passive interface:
Let s say I have a router R2 which is an ABR between OSPF are 0 and area 3 and EIGRP AS 10.
it has S0/1 connecting to area 0 and E0 connecting to area 3 and S0/2 connecting to EIGRP AS 10
now if I configure S0/1 and E0 as passive interfaces , then area 0 and area 3 will not get any routes from EIGRP 10 and the other way around I guess will also be true,EIGRP10 will not get any OSPF routes from area 0 and area 3.
My question is if later, I will try to redistribute OSPF into EIGRP 10 and EIGRP 10 into Area 0 and Area 3,will still be possible even if the afore-mentioned interfaces are configured as passive ?
Thank you
Let s say I have a router R2 which is an ABR between OSPF are 0 and area 3 and EIGRP AS 10.
it has S0/1 connecting to area 0 and E0 connecting to area 3 and S0/2 connecting to EIGRP AS 10
now if I configure S0/1 and E0 as passive interfaces , then area 0 and area 3 will not get any routes from EIGRP 10 and the other way around I guess will also be true,EIGRP10 will not get any OSPF routes from area 0 and area 3.
My question is if later, I will try to redistribute OSPF into EIGRP 10 and EIGRP 10 into Area 0 and Area 3,will still be possible even if the afore-mentioned interfaces are configured as passive ?
Thank you
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
4
3
2- +2
12 Comments
it depends on your purpose. Passive interface is one way traffic. Usually redistribution is two way traffic. If you hope it has full function between ERGRP and OSPF, you do not configure that interface as passive.
Active today
by the way , Passive interface in EIGRP blocks the incoming and outgoing advertisement.
What I have concluded from reading on the Net, is some routers version will advertize EIGRP with the classfull IP adress by default when you redistribute them into other other Routing Protocols such as OSPF. so the work around is to block the advertizement manually by making the interfaces that connect the ABR to the OSPF as Passive, then for instance, create Access-List that encompass the classless subnets of the EIGRP and Tag them, so that later when you redistribute the EIGRP routes you can use the Route Map to mach the Tag.
*** I might be going too far, but I wanted to make sure that Passive interface will come handy in the case where the router version will advertise the classful network ie, 172.16.10.0 as 172.16.0.0 even when you specify the wild card mask of 0.0.0.255.
What I have concluded from reading on the Net, is some routers version will advertize EIGRP with the classfull IP adress by default when you redistribute them into other other Routing Protocols such as OSPF. so the work around is to block the advertizement manually by making the interfaces that connect the ABR to the OSPF as Passive, then for instance, create Access-List that encompass the classless subnets of the EIGRP and Tag them, so that later when you redistribute the EIGRP routes you can use the Route Map to mach the Tag.
*** I might be going too far, but I wanted to make sure that Passive interface will come handy in the case where the router version will advertise the classful network ie, 172.16.10.0 as 172.16.0.0 even when you specify the wild card mask of 0.0.0.255.
Here is the best link for your understanding....
http://www.cisco.com/en/US/tech/tk365/technologies_tech_note09186a0080093f0a.shtml
http://www.cisco.com/en/US/tech/tk365/technologies_tech_note09186a0080093f0a.shtml
Active today
thpipfh: I have been to that link before I posted the Question. Thank you though.
What I need to know, in case you want to redistribute Classles IP address of a subnet from EIGRP AS to OSPF when the router version(in the EIGRP AS) does allow only the classful subnet.
because in some version if you type for example : Network 10.24.24.0 ?
the help does not show the wild card mask to enter.
what s the work around ?
What I need to know, in case you want to redistribute Classles IP address of a subnet from EIGRP AS to OSPF when the router version(in the EIGRP AS) does allow only the classful subnet.
because in some version if you type for example : Network 10.24.24.0 ?
the help does not show the wild card mask to enter.
what s the work around ?
Active today
If you have seen CBT Nuggets CCIE videos Advanced OSPF configuration. the instructor, had to use the passive interfaces to prevent the router from advertizing EIGRP domain routes, because the ASBR allow only classful IP addresses from EIGRP
So he used passive interfaces, then as a work around he used access-list that permits the /24 subnets mixing it up with Tags and Route maps.. it is not really clear to me...but that would be helpful if any Cisco expert out there can elaborate on that with an example
So he used passive interfaces, then as a work around he used access-list that permits the /24 subnets mixing it up with Tags and Route maps.. it is not really clear to me...but that would be helpful if any Cisco expert out there can elaborate on that with an example
Passive interface has nothing to do with redistributing routes between OSPF and EIGRP.
Also, passive interface has nothing to do with traffic (one way traffic).
To make an interface 'passive' in EIGRP (or OSPF) means that the router will not send or receive any EIGRP/OSPF 'hello' packets on that interface, and consequently the router will not form any EIGRP (or OSPF) neighbor relations ships on that interface.
However, the router will advertise the network that is configured on the passive interface to other neighbors - neighbors formed on other interfaces.
Also, passive interface has nothing to do with traffic (one way traffic).
To make an interface 'passive' in EIGRP (or OSPF) means that the router will not send or receive any EIGRP/OSPF 'hello' packets on that interface, and consequently the router will not form any EIGRP (or OSPF) neighbor relations ships on that interface.
However, the router will advertise the network that is configured on the passive interface to other neighbors - neighbors formed on other interfaces.
PS. An alternative to use Passive interface, is to redistribute connected subnets, with a filter for just that interface network. With OSPF that gives an external route, while with passive it is an internal route.
Featured Post
We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg).
If you're interested in additional methods for monitoring bandwidt…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Suggested Courses
Course of the Month7 days, 14 hours left to enroll
728 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.