[c-nsp] IPCP associated default route

Dean Smith dean at eatworms.org.uk
Thu Aug 9 18:08:32 EDT 2007 

David

Cant help on your specific question....but we're successfully using object
tracking to achieve (I think) the required result.

Dialer0 = Primary Link (DSL in this case)
Dialer1 = Secondary (ISDN...but still a dialer)

We track the "ip routing" state of Dialer 0. And attach that to the dialer0
default. With a higher cost default via Dialer1

So if PPP on dialer 0 fails...No address negotiated...track object goes
down. Default via Dialer1 takes over.

Don't have the config snippet to hand but from CCO :-

******
Perform this task to track the IP-routing state of an interface. An
IP-routing object is considered up when the following criteria exist:

.IP routing is enabled and active on the interface.

.The interface line-protocol state is up.

.The interface IP address is known. The IP address is configured or received
through the Dynamic Host Configuration Protocol (DHCP) or IP Control
Protocol (IPCP) negotiation.
*******
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122
t/122t15/fthsrptk.htm#wp1040072

Dean

-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of David Freedman
Sent: 09 August 2007 12:39
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] IPCP associated default route

Hey,

  The command "ppp ipcp default route" which associates a default route 
with the the IPCP peer address, seems to not use the presence of the 
IPCP host route in the RIB as a watch criteria.

For example, if I have the following configuration:


!
interface Dialer0
  description Primary dialer
  ip address negotiated
  encapsulation ppp
  dialer pool 1
  dialer-group 1
  keepalive 5
  down-when-looped
  ppp authentication chap callin
  ppp chap hostname foo at bar.com
  ppp chap password 0 foo
  !Obtain default for primary via peer address
  ppp ipcp default route
!
!
interface Dialer1
  description Backup dialer
  ip address negotiated
  encapsulation ppp
  dialer pool 1
  dialer-group 1
  keepalive 5
  down-when-looped
  ppp authentication chap callin
  ppp chap hostname foo-backup at bar.com
  ppp chap password 0 foo
!Dont install the peer host route in RIB
!so we dont ECMP route to it via both diallers
  no peer neighbour-route
!
!
!Back up service with static
ip route 0.0.0.0 0.0.0.0 Dialer1 200
!

Both diallers are live all the time (this is a requirement) and 
connected via seperate circuits to the same NAS, the peer host route 
offered via IPCP is the same /32.

      ____circuit A live______
[CPE]____circuit B live______[NAS]


The injection of the peer host route into the RIB is supressed for the 
backup dialer so that we dont end up sending traffic to the /32 (which 
is the next hop of the default created by "ppp ipcp default route") over
both dialers whilst they are up.

The problem that I am having is that if the backup dialer's PPP session 
collapses (i.e circuit fails) then we withdraw the ipcp associated 
default from the primary dialer !

The only reason I can think for this is that the ipcp associated default 
is event managed out of the dynamic dialer mapped ip lists rather than 
the RIB, since two dynamic dialer map ips always exist out via both 
dialers, whenever we lose a dialler mapped ip to the peer host addres
(via either dialer) we withdraw the default from the RIB.

This is most frustrating , I dont wish to hardcode the peer host address 
into this device since it could change in the future,
can somebody confirm that this behaviour is expected, (seen in 12.4)
and if so does it indeed use the dynamic dialer maps to build
the association (and hence track the event?)
and if so, how can I supress the dynamic dialer mapped ip being 
installed via the backup dialer.

Of course there are a multitude of other approaches to dial backup which 
we currently have in place, this was however a new one for dial backed 
up dial that we are trying to get working (where both circuits are 
live), any help or other insight would be appreciated.

Kind Regards,

David Freedman

_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

More information about the cisco-nsp mailing list