[c-nsp] BGP Problem

Harold Ritter (hritter) hritter at cisco.com
Thu Jul 21 17:34:19 EDT 2005 

Arnold,

In the scenario you are pointing out, The notification message is
actually sent by the router configured with the maximum-prefix, which
Arturo already confirmed his router is not configured for. 


Harold

-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Arnold Nipper
Sent: Thursday, July 21, 2005 5:23 PM
To: Harold Ritter (hritter); aservin at remoteconfig.net
Cc: cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] BGP Problem

On 21.07.2005 23:11 Harold Ritter (hritter) wrote

> Arturo,
> 
> Do you have other message in the log before or after this message. How

> is the memory utilization on the router?
> 


Looks like your peer configured max_pref. Have a look at
http://www.cisco.com/en/US/tech/tk365/technologies_configuration_example
09186a008010a28a.shtml#c2




Arnold

> Thanks, 
> 
> 
> Harold
> 
> -----Original Message-----
> From: Arturo Servin [mailto:aservin at remoteconfig.net] 
> Sent: Thursday, July 21, 2005 4:34 PM
> To: Harold Ritter (hritter)
> Cc: cisco-nsp at puck.nether.net
> Subject: Re: [c-nsp] BGP Problem
> 
> Harold Ritter (hritter) wrote:
> 
>>This looks like a valid update. Do you have maximum-prefix configured 
>>on this neighbor? What level of IOS is this?
>>
>>Harold
>>
>>-----Original Message-----
>>From: cisco-nsp-bounces at puck.nether.net 
>>[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Arturo Servin
>>Sent: Wednesday, July 20, 2005 3:03 PM
>>To: cisco-nsp at puck.nether.net
>>Subject: [c-nsp] BGP Problem
>>
>>Hi,
>>
>>    We had this error on one router. We think that it was a bgp
attack,
> 
>>but we are not sure. The router has the last IOS version of the trend 
>>and it is not affected by the BGP bug.
>>
>>Jul 17 22:11:33: %BGP-3-NOTIFICATION: sent to neighbor <IP neighbor> 
>>(update malformed) 0 bytes  FFFF FFFF FFFF FFFF FFFF FFFF FFFF FFFF 
>>0047 0200 0000 2840 0101 0040 020E 0206 2BA4 0A80 1B6A 04D7 493B 4BE5 
>>4003 04CF F8E1 E940 0600 C007 064B E5DD 0404 0416 C845 6814 C872 00
>>
>>    Some body with the same experience in the past?
>>
>>Thanks,
>>-as
>>
>>  
>>
>     12.2(15)T12.
> 
>     We do not have configured anything uncommon.
> 
> router bgp 10479
>  no synchronization
>  bgp log-neighbor-changes
>  network a.b.c.d
>  neighbor A.B.C.D  remote-as 11172
>  neighbor A.B.C.D next-hop-self
>  neighbor A.B.C.D soft-reconfiguration inbound  neighbor A.B.C.D
> filter-list 11 in  neighbor A.B.C.D filter-list 10 out  no
auto-summary
> 
> -as
> 
> 
> 
> 
> 


-- 
Arnold Nipper / nIPper consulting, Sandhausen, Germany
email: arnold at nipper.de       phone: +49 6224 9259 299
mobile: +49 172 2650958         fax: +49 6224 9259 333
_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

More information about the cisco-nsp mailing list