[j-nsp] LDP flaps specifically present on ACX Juniper routers (ACX4000 and ACX1100)

Khairul Alam alam.khairul at summitcommunications.net
Sat Apr 30 06:06:21 EDT 2016


Try checking the size of your label tables (inet.3 and mpls.0). We had similar issue with our LDP sessions after over-population of the label table on ACX. Apparently they have a size of around 1K/2K but they fluctuated when we hit around 800+ labels. 
LDP in juniper works by only generating labels for specific routes (/32) unlike Cisco and end to end IGP routing is a must.

----- Original Message -----
From: "Aaron" <aaron1 at gvtc.com>
To: "joel ahumuza" <ahm.joel at gmail.com>, "Alexandre Guimaraes" <alexandre.guimaraes at ascenty.com>
Cc: juniper-nsp at puck.nether.net, tech at roketelkom.co.ug
Sent: Friday, April 29, 2016 5:25:06 PM
Subject: Re: [j-nsp] LDP flaps specifically present on ACX Juniper routers	(ACX4000 and ACX1100)

Thanks Alexandre, I meant the LDP RID....i recall hearing something about
the LDP RID needing to be a /32 and ip-reachable from adjacent (T)LDP
neighbors.

Aaron

root at r8-j> show configuration interfaces lo0.0 family inet | display set
set interfaces lo0 unit 0 family inet address 1.1.1.8/32

root at r8-j> show ldp overview | grep "Router ID"
  Router ID: 1.1.1.8


-----Original Message-----
From: juniper-nsp [mailto:juniper-nsp-bounces at puck.nether.net] On Behalf Of
joel ahumuza
Sent: Friday, April 29, 2016 3:14 AM
To: Alexandre Guimaraes <alexandre.guimaraes at ascenty.com>
Cc: tech at roketelkom.co.ug; juniper-nsp at puck.nether.net
Subject: Re: [j-nsp] LDP flaps specifically present on ACX Juniper routers
(ACX4000 and ACX1100)

Hi All,
Aaron,
Not all ldp interfaces are /32, my loopbacks are /32s other interfaces
attached to the ldp process are p2p links with /31 masks.

Alexandre,
Thank you, I have applied the filters to our devices. I will monitor and
advise.

On 28 April 2016 at 23:43, Alexandre Guimaraes <
alexandre.guimaraes at ascenty.com> wrote:

> Had experienced the same thing.
>
> After adding this to the loopback filter, the problem gone
>
>
> set firewall family inet filter PROTECT-RE term aceita-ldp from 
> protocol tcp set firewall family inet filter PROTECT-RE term 
> aceita-ldp from protocol udp set firewall family inet filter 
> PROTECT-RE term aceita-ldp from source-port 646 set firewall family 
> inet filter PROTECT-RE term aceita-ldp from destination-port 646 set 
> firewall family inet filter PROTECT-RE term aceita-ldp then accept
>
> Alexandre
>
> -----Mensagem original-----
> De: juniper-nsp [mailto:juniper-nsp-bounces at puck.nether.net] Em nome 
> de joel ahumuza Enviada em: quinta-feira, 28 de abril de 2016 12:38
> Para: juniper-nsp at puck.nether.net
> Cc: tech at roketelkom.co.ug
> Assunto: [j-nsp] LDP flaps specifically present on ACX Juniper routers
> (ACX4000 and ACX1100)
>
> Hi All,
>
> We are experiencing an issue with ACX routers running on 12.3X54-D20.7 
> where the LDP sessions are continuously flapping, the logs indicate 
> the following;
>
> Apr 21 03:36:31  hostname rpd[2299]: RPD_LDP_SESSIONDOWN: LDP session 
> x.x.x.x is down, reason: hold time expired Apr 21 03:36:34  hostname
> rpd[2299]: RPD_LDP_NBRDOWN: LDP neighbor x.x.x.x
> (lo0.0) is down
> Apr 21 03:36:38  hostname rpd[2299]: RPD_LDP_NBRDOWN: LDP neighbor 
> x.x.x.x
> (lo0.0) is down
> Apr 21 03:36:38  hostname rpd[2299]: RPD_LDP_SESSIONDOWN: LDP session 
> x.x.x.x is down, reason: all adjacencies down Apr 21 03:55:34  
> hostname
> rpd[2299]: RPD_LDP_SESSIONDOWN: LDP session x.x.x.x is down, reason:
> received notification from peer Apr 21 03:55:34  hostname rpd[2299]:
> RPD_LDP_SESSIONDOWN: LDP session x.x.x.x is down, reason: received 
> notification from peer Apr 21 03:55:35  hostname rpd[2299]:
> RPD_LDP_SESSIONDOWN: LDP session x.x.x.x is down, reason: received 
> notification from peer Apr 21 03:55:35  hostname rpd[2299]:
> RPD_LDP_SESSIONDOWN: LDP session x.x.x.x is down, reason: received 
> notification from peer
>
> The physical connections are okay, no flaps or errors on the p2p 
> connections We are running ISIS as the IGP, whose adjacency is stable.
>
> Actions taken from our team was;
> - Increase the hold time setting on the ldp enabled interfaces.
> - Increase the time interval on the same ldp enabled interfaces.
> - setting the ldp session protection setting on the ldp enabled 
> loopback interface.
>
> Unfortunately the actions did not yield much since the flaps have been 
> ongoing.
>
> Anyone have any Idea on what the problem / solution might be?
>
> --
> Blessings,
>
> AJ.
> SkypeID - jl.hmz
> ahumuza-joel.blogspot.ug
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net 
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>



--
Blessings,

AJ.
SkypeID - jl.hmz
ahumuza-joel.blogspot.ug
_______________________________________________
juniper-nsp mailing list juniper-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

_______________________________________________
juniper-nsp mailing list juniper-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

-- 


Khairul Alam Ananda 

Assistant Engineer 

Planning, Architecture and Designing 

+8801616669420 






More information about the juniper-nsp mailing list