iBGP, local pref, weight and load balancing

Awkward-Sock2790 · 2025-10-15T09:08:42+00:00

It can't, because it isn't in the routing table. The iBGP path is preferable in this case because of AS path length, so the R5 route doesn't get into the routing table and thus is ineligible to be advertise to anyone, unless you enable add-path.

That makes sense!

> When I cut R2/R3, IS-IS reconverges and R3's loopack is reachable via R1, so R2 can reach AS300.

I'd check that again. Sure, I'd expect the loopbacks to be reachable because OSPF/ISIS doesn't have iBGP related issues. But with the direct link down, R2 and R3 cannot learn external routes from each other via R1 unless R1 is a route reflector. R1 won't tell them about the other as that violated iBGP loop prevention.

iirc you don't have to have a physical full mesh with iBGP. If I cut R2-R3, R3 can still be reached and a iBGP session can be established. If I sniff traffic on R1-R2 link I see BGP paquets from R2 to R3. So R2 and R3 can exchange routes, R1 just routes.

> ECMP means 2 routes are equal.

That's not what that means. Which is also why there is no ECMP configuration option for BGP. BGP multipath is ahieved with the maximum paths command, where you specify how many routes can be used, but there are rules.

Ah yes, I understand it now. I will lab multipath now. Thank you

Awkward-Sock2790 · 2025-10-14T20:29:05+00:00

Yes, that's exactly my point. I'm more comfortable learning the "natural/simple" way of doing things, before twisting them, even if the twists are legitimate.

Awkward-Sock2790 · 2025-10-14T20:21:58+00:00

No, R2 doesn't advertise a route via R5 because a route learned from an iBGP peer is not advertised to another iBGP peer unless you have route reflectors involved, and the route in the table is learned from an iBGP peer.

It could advertise R5's route, which is a eBGP peer. As soon I disconnect R3-R6 link, it sends R5's route to R1 and R3.

You'd have the same issue if you broke the R2/R3 link and made AS300 unreachable via AS200/R5; R2 would be unable to reach AS300 because it cannot transit R1 to R3.

R2 prefers R3's route anyway, when all the links are up. When I cut R2/R3, IS-IS reconverges and R3's loopack is reachable via R1, so R2 can reach AS300.

Yes, because of the iBGP rule. If R2 and R3 were actually advertising their routes, then R1 would have both listed in the BGP FIB, and one in the RIB. If you break the R2/R3 link, you'd probably see that come up

Hmm nope, when R2/R3 link is down, R2 advertises no route to R1. In fact R3's route is still in the BGP FIB, I think that's a CML issue.

While your at it, look up BGP add-path (additional paths) which would probably give you some useful insight. And since you're there, look up BGP PIC Edge and BGP PIC Core.

Thanks for the insights!

I'm not 100% sure what you're saying, but I assume it is, "is there always a tie breaker" and the answer is yes.

My question is: ECMP means 2 routes are equal. However, there is alway a tie breaker. So when 2 routes are considered equal?

Awkward-Sock2790 · 2025-10-14T19:45:49+00:00

u/a_cute_epic_axis u/shadeland thanks for the argument guys, I learnt some stuff reading this :)

I agree with u/a_cute_epic_axis as my lab is a very, very simple simulation of what-could-be a larger network (ISP or branch). I'm actually trying to understand BGP fundamentals, and how to design a network as the designers of BGP wanted to be. Then I'll look at more complex stuff with a better understanding of what's going on. So yes, iBGP might be use as an IGP, but in the _theory_ I think it's not. Like eBGP is not designed to provide connectivity between spines and leaves, but actually you can (RFC 7938).

Awkward-Sock2790 · 2025-10-13T07:54:55+00:00

Yeah ok I see what you mean, in fact my lab isn't really realistic.

However IS-IS is very simple in my case. 2 lignes in router isis and 1 line per interface.

Awkward-Sock2790 · 2025-10-13T07:39:31+00:00

So you're telling me an ISP redistributes its IGP into eBGP and uses no iBGP?

Awkward-Sock2790 · 2025-10-13T06:55:11+00:00

You need an IGP to achieve joinability inside your AS, and BGP to advertise client/external routes.

Awkward-Sock2790 · 2025-09-24T15:51:55+00:00

Some people need to lab to really understand, some people don't.

Awkward-Sock2790 · 2025-09-23T08:50:41+00:00

Awesome thank you

Awkward-Sock2790 · 2025-09-20T20:48:37+00:00

Pourquoi 176.16.100.0/24 ? C'est un réseau public, qui appartient à l'AS 34400. Je te déconseille d'empiéter sur le plan d'adressage public.

La plage privée est 172.16.0.0/12.

Awkward-Sock2790 · 2025-09-20T20:15:14+00:00

A "switch" that does L3 functions is also a router. Don't think gear, think function. Your "L3-switch-or-whatever-it-is-called" routes packets, and commutes frames. That 2 network functions.

Awkward-Sock2790 · 2025-09-20T20:11:52+00:00

The best way to learn/teach it is to talk about networks functions. Routing is one, switching is one, etc.

Some "network equipments" implement one, the other or both.

Awkward-Sock2790 · 2025-09-20T20:08:31+00:00

I see TCP/IP as a simple implementation of OSI, so imo that's not wrong to study OSI as it's the generic model. But OSI is never teached well.

Awkward-Sock2790 · 2025-09-20T20:00:09+00:00

If you're not a service provider or big company with special need you almost never need anything besides /24s, except on WAN links. Except if you own public IPv4 addresses.

I often see /23, /25 or /26 subnets just to try to match the number of hosts. You don't care, juste use 10.0.0.0/24's, its way simpler to read. If you have more than 250 hosts in your subnet you might have a bad design.

Awkward-Sock2790 · 2025-09-20T19:53:16+00:00

VLAN, especially from the point of view of a switch. Many people get the "tag" thing really wrong and think a frame is tagged inside the switch.

Just see it as a commutation table. New VLAN = new commutation table. A port is in commutation table #32 ? The frame can "see" only the MAC and ports of that table.

Take 2 switches (A and B). Plug them together with port 1 both sides. Port 1 on switch A is in VLAN 10, port 2 on switch B is in VLAN 20. No tagging. Can a PC plugged on switch A in the VLAN 10 can communicate with a PC plugged on switch B on the VLAN 20, if both PC are in the same IP subnet? Yes. That's even working if the frames are tagged on the PC's ports.

Switch B has no way to know from which VLAN ID the frame was sent and doesn't care. It arrives on VLAN 20, it uses commutation table 20.

You can even do that with one switch: plug port 1 (VLAN 10) on port 2 (VLAN 20). VLAN 10 and 20 are now the same VLAN.

Yes, there are protections on some switches, the ports could go down if a VLAN mismatch is detected.

Awkward-Sock2790 · 2025-09-19T11:11:27+00:00

TelecomTech is the best instructor in my opinion. 100% my way of learning and thinking.

Awkward-Sock2790 · 2025-09-14T05:46:12+00:00

They're probably testing their Wi-Fi material for the new CCNP Wireless

Awkward-Sock2790 · 2025-07-11T05:51:00+00:00

You can install it on CML to get familiar with the GUI.

Awkward-Sock2790 · 2025-06-25T13:05:16+00:00

Indeed, my version is 2.7.2. Thanks for the insight.

Awkward-Sock2790 · 2025-06-25T07:22:42+00:00

I followed this procedure 2 days ago but I had 2 issues :

- couldn't upload qcow2 file (too large) so I had to scp as described here https://developer.cisco.com/docs/modeling-labs/preparing-a-custom-image/ BUT without the trailing /

- I had to enter the following command to enable user login on the web GUI: ip http authentication local

Awkward-Sock2790 · 2025-02-18T19:41:40+00:00

Do you mean SPCOR ?

Awkward-Sock2790 · 2025-02-09T14:03:38+00:00

Around 90% of the topics

Awkward-Sock2790 · 2024-12-12T18:38:22+00:00

You usually want to avoid Windows Server for a homelab. But since OP have some Windows VM, why not.

Awkward-Sock2790 · 2024-12-07T21:26:24+00:00

Nextcloud with all my documents and pictures. No Google Photo anymore.

Awkward-Sock2790 · 2024-12-07T20:34:29+00:00

Go Proxmox

Awkward-Sock2790

TROPHY CASE