Objectives
Advertise new range of IPs and how to configure on the routers.
Prerequisites
1. Contacted IPServerOne to allowed the new ranges to be advertised
2. PuTTY
Steps
Step 1: Adding Prefixes Into BGP Router
Check your IP Prefix list in your Cisco Router and jot down the sequence/rule number and the IP range
(CISCO ROUTER) Show ip prefix-list PF-NETONBOARD (VYATTA OS ROUTER) Run show ip prefix-list PF-NETONBOARD
Use the command above to show the prefix list and to ensure what is the name of the prefix list that we are using. Note that PF-NETONBOARD is one of our created prefix lists.
Then, add in the new range to the prefix list.
(CISCO ROUTER)
- Ip prefix-list PF-NETONBOARD seq XX permit Y.Y.Y.Y/YY
(VYATTA OS ROUTER)
- Set policy route prefix-list PF-NETONBOARD rule XX action permit
- Set policy route prefix-list PF-NETONBOARD rule XX prefix Y.Y.Y.Y/Y
X – This is the sequence/rule number as mentioned in Step 1, please follow the sequence number and do not overlap the existing numbers
Y – This is your new IP range with the subnet
This command is to add in the new IP range to the prefix list that is used to be advertised in MYIX.
Next, add static route entries for the new ranges.
(CISCO ROUTER) Ip route X.X.X.X Y.Y.Y.Y Null 0 (VYATTA OS ROUTER) set protocols static route X.X.X.X/X blackhole distance 1 X – IP range Y – Subnet mask
At first, there are no routes for the range. So, a route must be entered. Null 0 is to make sure that traffic will be dropped on the local router if a more specific route does not exist.
Finally, check whether your prefixes are successfully advertised out. For Vyatta OS, run the following command to advertise the range to the BGP route.
(CISCO ROUTER) Show ip bgp neighbours 218.100.44.139 advertised-routes (VYATTA OS ROUTER) set protocols bgp 45144 address-family ipv4-unicast network 220.158.208.0/24
This command is used to confirm whether your prefixes are advertised out to your route server, in this case MYIX. If it’s successfully advertised, your new range should show there.
Step 2: Adding Sub-Intefaces in Router
Configure the sub-interfaces with the new IP range.
(CISCO ROUTER) interface TenGigabitEthernet0/0/0.XXX encapsulation dot1Q XXX ip address A.A.A.A S.S.S.S vrrp C ip B.B.B.B vrrp C timers advertise 3 vrrp C preempt delay minimum 3 vrrp C priority 150 (VYATTA OS ROUTER) set interface dataplane dp0p2s0f0 vif XXX address AAA.AAA.AAA/SS set interface dataplane dp0p2s0f0 vif XXX vrrp vrrp-group C virtual-address BBB.BBB.BBB.BBB set interface dataplane dp0p2s0f0 vif XXX vrrp vrrp-group C advertise-interval 3 set interface dataplane dp0p2s0f0 vif XXX vrrp vrrp-group C preempt true set interface dataplane dp0p2s0f0 vif XXX vrrp vrrp-group C preempt-delay 3 set interface dataplane dp0p2s0f0 vif XXX vrrp vrrp-group C priority 100 X – Your desired VLAN ID A – INTERFACE IP S – Subnet mask B – VRRP IP C – VRRP ID
By adding .XXX at the end of the interface, you are creating a sub interface where it is separated from the main interface logically. This is typically used on routers as they have limited interfaces.
The IP Address of the interface can be set to .2 or .3 as a VRRP is setup. A VRRP is whereby two routers can share the same Virtual IP. We usually use this Virtual IP as the gateway. If any one of the routers are down, the other can be used. That is why the VRRP IP is usually set as the gateway. In this case, .1.
By setting different priority for both VRRP peers, it determines which router to be the Master and the Backup. In this case, priority 150 will have a higher priority, so the router will be used.
Step 3: Allowing VLANs Through the Switch
Add in the new VLANs to your switches.
Configure terminal Vlan XXX Name YYY End
The commands above are used to add in a new VLAN entry to your switches. The commands can be used on different models of switches.
Next, tag the new VLANs to your trunk ports.
Configure terminal Interface XXX (CISCO CATALYST & NEXUS SERIES) switchport trunk allowed vlan add YYY-ZZZ (DELL SERIES) switchport trunk allowed vlan YYY-ZZZ X – Interface of your switch (e.g. Gi1/0/1) Y, Z – VLAN number
The trunk ports that you need to tag the new VLAN in are the ports that are connected to the Router and other Switches.
Multiple VLANs can be added to the trunk by using the range parameter (switchport trunk allowed vlan 400-408).
In Cisco Catalyst and Nexus Series, you must add in the “add” parameter to add in the VLAN. Not doing so will result in the new VLANS overwriting the existing VLAN.
Finally, save your configuration on your switches.
(CISCO CATALYST SERIES) write memory (DELL SERIES) write memory (CISCO NEXUS SERIES) copy running-configuration startup-configuration (copy run start)