• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

ISP implementation.

Scheduled Pinned Locked Moved TNSR
6 Posts 2 Posters 1.1k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • L
    LeoB
    last edited by Dec 29, 2020, 7:34 PM

    Greetings friends, I hope you can please help me with the following in case someone has already had the opportunity to implement OSPF for ipv4.

    I have the case where I work we must put TNSR as a router that does NAT to output the internet to approximately 5000 residential clients. We have mikrotik routers for internal routing.
    I have activated the OSPF protocol and I have generated the area and interfaces that are going to intervene, after this mikrotik already recognizes TNSR as an OSPF neighbor but they do not exchange any route table, could someone perhaps tell me that it is missing? For the TNSR configuration I followed the steps in the documentation.
    https://docs.netgate.com/tnsr/en/latest/dynamicrouting/ospf/example.html

    I clarify that I have not yet contracted the TAC Pro support because I would like to try it for a few hours to continue with the purchase of the support.

    TNSR is installed in an XG-1537 appliance, with the original network card of the model that has 2 10Giga SFP + interfaces, and added a network card with 4 10G SFP + interfaces, the same ones that I have put to work in Bond LACP L2 mode, to get 30G to the LAN AND 30G to the WAN, the OSPF serves me only in the LAN Bond to learn the internal networks.

    D 1 Reply Last reply Dec 29, 2020, 10:00 PM Reply Quote 0
    • D
      Derelict LAYER 8 Netgate @LeoB
      last edited by Dec 29, 2020, 10:00 PM

      @leob We are going to need to see your actual configuration not the documentation you followed.

      Chattanooga, Tennessee, USA
      A comprehensive network diagram is worth 10,000 words and 15 conference calls.
      DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
      Do Not Chat For Help! NO_WAN_EGRESS(TM)

      L 1 Reply Last reply Dec 31, 2020, 4:34 PM Reply Quote 1
      • L
        LeoB @Derelict
        last edited by Dec 31, 2020, 4:34 PM

        @derelict thank you very much friend.

        Basically I just need TNSR to get the prefixes that the LAN routers advertise to it. TNSR will not make any announcements to the LAN routers.
        The router ID and used the ip of bond1.2500 which is 172.16.245.1
        RED.PNG
        This was my setup.
        tnsr(config)# route dynamic ospf
        tnsr(config-frr-ospf)# server vrf default
        tnsr(config-ospf)# ospf router-id 172.16.245.1
        tnsr(config-ospf)# exit
        tnsr(config-frr-ospf)# interface BondEthernet1.2500
        tnsr(config-ospf-if)# ip address * cost 5
        tnsr(config-ospf-if)# ip address * area 11.0.0.0
        tnsr(config-ospf-if)# exit
        tnsr(config-frr-ospf)# enable
        tnsr(config-frr-ospf)# exit

        Could you please tell me if something is missing? I appreciate your interest.

        D 2 Replies Last reply Dec 31, 2020, 4:37 PM Reply Quote 0
        • D
          Derelict LAYER 8 Netgate @LeoB
          last edited by Dec 31, 2020, 4:37 PM

          @leob No that looks OK but I am tracking a potential issue with OSPF and LACP Bond interfaces. It's looking like an issue with Multicast and Bonds and not OSPF-specific. More research necessary.

          Does it appear that the mikrotik is receiving the multicast from the tnsr node but the tnsr node is not receiving from mikrotik? That would dovetail with what I am seeing here.

          Chattanooga, Tennessee, USA
          A comprehensive network diagram is worth 10,000 words and 15 conference calls.
          DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
          Do Not Chat For Help! NO_WAN_EGRESS(TM)

          1 Reply Last reply Reply Quote 0
          • D
            Derelict LAYER 8 Netgate @LeoB
            last edited by Derelict Dec 31, 2020, 4:40 PM Dec 31, 2020, 4:38 PM

            @leob It could also be NAT-related. But OSPF is known to work on NAT inside interfaces so I am leaning toward Multicast+LACP as your potential blocker. Is it possible for you to try to bring it up on a single "normal" interface to check?

            Chattanooga, Tennessee, USA
            A comprehensive network diagram is worth 10,000 words and 15 conference calls.
            DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
            Do Not Chat For Help! NO_WAN_EGRESS(TM)

            L 1 Reply Last reply Dec 31, 2020, 4:43 PM Reply Quote 0
            • L
              LeoB @Derelict
              last edited by Dec 31, 2020, 4:43 PM

              @derelict if I'm going to try, the problem I see is exactly the one you describe, even in mikrotik the neighbor is recognized and the changes that ospf announces.
              ospf.PNG

              1 Reply Last reply Reply Quote 1
              2 out of 6
              • First post
                2/6
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                This community forum collects and processes your personal information.
                consent.not_received