Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    ISP implementation.

    Scheduled Pinned Locked Moved
    TNSR
    2
    6
    956
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      LeoB
      last edited by

      Greetings friends, I hope you can please help me with the following in case someone has already had the opportunity to implement OSPF for ipv4.

      I have the case where I work we must put TNSR as a router that does NAT to output the internet to approximately 5000 residential clients. We have mikrotik routers for internal routing.
      I have activated the OSPF protocol and I have generated the area and interfaces that are going to intervene, after this mikrotik already recognizes TNSR as an OSPF neighbor but they do not exchange any route table, could someone perhaps tell me that it is missing? For the TNSR configuration I followed the steps in the documentation.
      https://docs.netgate.com/tnsr/en/latest/dynamicrouting/ospf/example.html

      I clarify that I have not yet contracted the TAC Pro support because I would like to try it for a few hours to continue with the purchase of the support.

      TNSR is installed in an XG-1537 appliance, with the original network card of the model that has 2 10Giga SFP + interfaces, and added a network card with 4 10G SFP + interfaces, the same ones that I have put to work in Bond LACP L2 mode, to get 30G to the LAN AND 30G to the WAN, the OSPF serves me only in the LAN Bond to learn the internal networks.

      DerelictD 1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate @LeoB
        last edited by

        @leob We are going to need to see your actual configuration not the documentation you followed.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        L 1 Reply Last reply Reply Quote 1
        • L
          LeoB @Derelict
          last edited by

          @derelict thank you very much friend.

          Basically I just need TNSR to get the prefixes that the LAN routers advertise to it. TNSR will not make any announcements to the LAN routers.
          The router ID and used the ip of bond1.2500 which is 172.16.245.1
          RED.PNG
          This was my setup.
          tnsr(config)# route dynamic ospf
          tnsr(config-frr-ospf)# server vrf default
          tnsr(config-ospf)# ospf router-id 172.16.245.1
          tnsr(config-ospf)# exit
          tnsr(config-frr-ospf)# interface BondEthernet1.2500
          tnsr(config-ospf-if)# ip address * cost 5
          tnsr(config-ospf-if)# ip address * area 11.0.0.0
          tnsr(config-ospf-if)# exit
          tnsr(config-frr-ospf)# enable
          tnsr(config-frr-ospf)# exit

          Could you please tell me if something is missing? I appreciate your interest.

          DerelictD 2 Replies Last reply Reply Quote 0
          • DerelictD
            Derelict LAYER 8 Netgate @LeoB
            last edited by

            @leob No that looks OK but I am tracking a potential issue with OSPF and LACP Bond interfaces. It's looking like an issue with Multicast and Bonds and not OSPF-specific. More research necessary.

            Does it appear that the mikrotik is receiving the multicast from the tnsr node but the tnsr node is not receiving from mikrotik? That would dovetail with what I am seeing here.

            Chattanooga, Tennessee, USA
            A comprehensive network diagram is worth 10,000 words and 15 conference calls.
            DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
            Do Not Chat For Help! NO_WAN_EGRESS(TM)

            1 Reply Last reply Reply Quote 0
            • DerelictD
              Derelict LAYER 8 Netgate @LeoB
              last edited by Derelict

              @leob It could also be NAT-related. But OSPF is known to work on NAT inside interfaces so I am leaning toward Multicast+LACP as your potential blocker. Is it possible for you to try to bring it up on a single "normal" interface to check?

              Chattanooga, Tennessee, USA
              A comprehensive network diagram is worth 10,000 words and 15 conference calls.
              DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
              Do Not Chat For Help! NO_WAN_EGRESS(TM)

              L 1 Reply Last reply Reply Quote 0
              • L
                LeoB @Derelict
                last edited by

                @derelict if I'm going to try, the problem I see is exactly the one you describe, even in mikrotik the neighbor is recognized and the changes that ospf announces.
                ospf.PNG

                1 Reply Last reply Reply Quote 1
                • First post
                  Last post