Monitoring BGP/MPLS VPNs

[Contents] [Prev] [Next] [Index] [Report an Error]

Monitoring BGP/MPLS VPNs
To view BGP/MPLS VPN settings, you can issue the following show commands as well as any of the show ip bgp commands described in Chapter 1, Configuring BGP Routing. Refer to Chapter 2, Configuring MPLS, for information on show commands to monitor MPLS settings.

Use the debug ip mbgp command to get information on problems with BGP or the network.

debug ip mbgp

Use to display information on MP-BGP logs for inbound or outbound events, or both.

Example
host1#debug ip mbgp
There is no no version, but you can use the undebug ip mbgp command to disable display of information previously enabled with the debug ip mbgp command.

show ip bgp next-hops

Use to display information about BGP next hops.

Specify all VRFs or a particular VRF, and all indirect next hops or a particular indirect next hop.

Field descriptions

Indirect next-hop - BGP next-hop attribute as received in the BGP update message

MPLS stacked label - MPLS label as received in the MP-Reach-NLRI attribute in the BGP update message; shown only for VPN routes

Reachable - indicates whether or not the indirect next-hop is reachable. For non-VPN routes, the indirect next-hop is reachable if it is resolved by a route in the IP forwarding table. For VPN routes, the indirect next-hop is reachable if an MPLS base tunnel to the indirect next-hop exists and MPLS successfully created a stacked tunnel on top of that base tunnel using the MPLS stacked label.

Direct next-hop - interface and next-hop IP address which resolve the indirect next-hop

Reference count - number of routes using this next-hop

Example
host1:pe1#show ip bgp vpnv4 vrf pe11 next-hops
Indirect next-hop 2.2.2.2                           
  MPLS stacked label 19                             
  Reachable                                         
  Direct next-hop tun mpls:vpnInL19-18              
  Reference count is 1                              
Indirect next-hop 11.11.11.2                        
  Reachable (metric 1)                              
  Direct next-hop atm2/0.11 (11.11.11.2)            
  Reference count is 1                              
show ip interface vrf

Use to display information about the interfaces associated with the specified VRF.

Field descriptions

interface - interface type and interface specifier

interface status - status of the interface

line protocol - status of the line protocol

Link up/down trap - status of SNMP link up/down traps on the interface

Internet address - IP address of the interface

Operational MTU - actual MTU for the interface

Administrative MTU - configured MTU for the interface

Operational speed - actual speed

Administrative speed - configured speed

Discontinuity Time - value of sysUpTime the last time the integrity of the interface statistics was compromised

Router advertisement - whether routes are advertised; enabled or disabled

Administrative debounce-time - whether the up/down state of the interface will be debounced or damped if a link periodically fails and immediately comes back; the time delay (configured in Interface Configuration mode) that an interface must remain in a new state before the routing protocols react to the state change

Operational debounce-time - whether the up/down state of the interface will debounced or "damped" if a link periodically fails and immediately comes back; the time delay that an interface must remain in a new state before the routing protocols react to the state change; the time delay (configured in Interface Configuration mode or Global Configuration mode) that an interface must remain in a new state before the routing protocols react to the state change

Access routing - when enabled, an access route is installed to the host on the other end of the interface

Multipath mode - algorithm used for ECMP, DA/SA hashing or round-robin

In Received Packets, Bytes - total packets and bytes received on an IP interface

Unicast - unicast packets and bytes received on an IP interface

Multicast - multicast packets and bytes received on an IP interface

In Policed Packets - packets discarded on a receive IP interface because of token bucket limiting

In Error Packets - packets discarded on a receive IP interface because of IP header errors

In Invalid Source Address Packets - packets discarded on a receive IP interface because of invalid IP source address (sa-validate enabled)

Out Forwarded Packets, Bytes - packets and bytes forwarded out an IP interface

Unicast - unicast packets and bytes forwarded out an IP interface

Multicast - multicast packets and bytes forwarded out an IP interface

Out Scheduler Drops Committed Packets - committed packets dropped because of out queue threshold limit

Out Scheduler Drops Conformed Packets - conformed packets dropped because of out queue threshold limit

Out Scheduler Drops Exceeded Packets - exceeded packets dropped because of out queue threshold limit

Out Policed Packets - packets discarded on a forwarding IP interface because of token bucket limiting

Example
host1#show ip interface vrf vpn1
null0 is up, line protocol is up
  Network Protocols: IP
  Internet address is 255.255.255.255/255.255.255.255
  Broadcast address is 255.255.255.255
  Operational MTU = 1500  Administrative MTU = 0
  Operational speed = 100000000  Administrative speed = 0
  Discontinuity Time = 0
  Router advertisement = disabled
  Administrative debounce-time = disabled
  Operational debounce-time    = disabled
  Access routing = disabled
  Multipath mode = hashed
atm4/0.77 is up, line protocol is up
  Network Protocols: IP
  Internet address is 7.8.7.7/255.255.255.0
  Broadcast address is 255.255.255.255
  Operational MTU = 9180  Administrative MTU = 0
  Operational speed = 155520000  Administrative speed = 0
  Discontinuity Time = 0
  Router advertisement = disabled
  Administrative debounce-time = disabled
  Operational debounce-time    = disabled
  Access routing = disabled
  Multipath mode = hashed
  In Received Packets 0, Bytes 0
    Unicast Packets 0, Bytes 0
    Multicast Packets 0, Bytes 0
  In Policed Packets 0, Bytes 0
  In Error Packets 0
  In Invalid Source Address Packets 0
  Out Forwarded Packets 0, Bytes 0
    Unicast Packets 0, Bytes 0
    Multicast Packets 0, Bytes 0
  Out Scheduler Drops Committed Packets 0, Bytes 0
  Out Scheduler Drops Conformed Packets 0, Bytes 0
  Out Scheduler Drops Exceeded  Packets 0, Bytes 0
  Out Policed Packets 0, Bytes 0
host1#show ip interface vrf vpn1 brief
Interface              IP-Address     Status Protocol Description
null0                  255.255.255.255  up         up
atm4/0.77              7.8.7.7          up         up 
show ip protocols

Use to display information about the routing protocols associated with the VRF.

You must specify the name of the VRF for which the protocols are displayed; otherwise, the command displays all protocols configured on the system

Field descriptions

For BGP:

Redistributing - protocol to which BGP is redistributing routes

Default local preference - local preference value

IGP synchronization - status of IGP synchronization: enabled, disabled

Always compare MED - status of multiexit discrimination: enabled, disabled

Router flap damping - status of route dampening: enabled, disabled

Administrative Distance - external, internal, and local administrative distances

Neighbor Address - the IP address of the BGP neighbor

Neighbor Incoming/Outgoing update distribute list - number of the access list for outgoing routes

Neighbor Incoming/Outgoing update prefix list - number of the prefix list for incoming or outgoing routes

Neighbor Incoming/Outgoing update prefix tree - number of the prefix tree for incoming or outgoing routes

Neighbor Incoming/Outgoing update filter list - number of filter list for incoming routes

Routing for Networks - the network for which BGP is currently injecting routes

For IS-IS:

System Id - 6-byte value of the system

IS-Type - routing type of the router: Level 1, Level 2

Distance - administrative distance for IS-IS learned routes

Address Summarization - aggregate addresses defined in the routing table for multiple groups of addresses at a given level or routes learned from other routing protocols

Routing for Networks - network for which IS-IS is currently injecting routes

For OSPF:

Router ID - OSPF process ID for the router

Distance - administrative distance for OSPF learned routes

Redistributing - protocol to which OSPF is redistributing routes

Address Summarization - aggregate addresses defined in the routing table for multiple groups of addresses at a given level or routes learned form other routing protocols

Routing for Networks - network for which OSPF is currently injecting routes

For RIP:

Router Administrative State - RIP protocol state. Enable means it is allowed to send and receive updates. Disable means that it may be configured but it is not allowed to run yet.

System Version - RIP versions allowed for sending and receiving RIP updates. The system version is currently set to RIP1, which sends RIP version 1 but will receive version 1 or 2. If the version is set to RIP2, the system will send and receive version 2 only. The default is configured for RIP1.

Update interval - current setting of the update timer (in seconds)

Invalid after - current setting of the invalid timer (in seconds)

hold down time - current setting of the hold down timer (in seconds)

flushed interval - current setting of the flush timer (in seconds)

Filter applied to outgoing route update - access list applied to outgoing RIP route updates

Filter applied to incoming route update - access list applied to incoming RIP route updates

Global route map - route map that specifies all RIP interfaces on the system

Distance - value added to RIP routes added to the IP routing table. The default is 120.

Interface - interface type on which RIP protocol is running

Redistributing - protocol to which RIP is redistributing routes

Routing for Networks - network for which RIP is currently injecting routes

Example
host1:pe1#show ip protocols vrf pe13
Routing Protocol is "ospf 1" with Router ID 13.13.13.1
  Distance is 110
Redistributing: bgp
  Address Summarization: 
    None
  Routing for Networks:
    13.13.13.0/255.255.255.0 area 0.0.0.0
show ip route vrf

Use to display the routing table of the specified VRF.

Field descriptions

Protocol/Route type codes - type of route

Prefix/Length - network prefix for route in VRF routing table

Type - protocol of route

Next Hop - IP address of the next hop to reach route

Dist/Met - administrative distance and metric applied to route

Intf - outgoing interface to reach route

Example
host1#show ip route vrf vpn2
Protocol/Route type codes:
I1- ISIS level 1, I2- ISIS level2,
I- route type intra, IA- route type inter, E- route type external,
i- metric type internal, e- metric type external,
O- OSPF, E1- external type 1, E2- external type2,
N1- NSSA external type1, N2- NSSA external type2
Prefix/Length   Type     Next Hop    Dist/Met     Intf
--------------- -------  ----------  --------      ------------
45.5.5.5/32     Connect  45.5.5.5    0/1           fastEthernet3/0
56.5.5.0/24     Connect  56.5.5.5    0/1           atm4/0.21
show ip vrf

Use to display brief information about the VRFs in this virtual router: the route target of each VRF and the interfaces attached to each VRF.

Specify the VRF name to display the brief information only about that VRF. You must be within the context of the virtual router to which the VRF belongs.

Field descriptions

VRF Name - name of each VRF

Default RD - default route distinguisher for the VRF

Interfaces - interfaces configured for the VRF

Examples:
host1#show ip vrf
VRF Name        Default RD         Interfaces
 vpn1           1:1                null0
                                   atm4/0.77
 vpn2           1:3                null0
                                   fastEthernet3/0
                                   atm4/0.21
host1#show ip vrf vpn1
VRF Name        Default RD         Interfaces
 vpn1           1:1                null0
                                   atm4/0.77
show ip vrf detail

Use to display detailed information about the VRFs in this virtual router.

Specify the VRF name to display the brief information only about that VRF. You must be within the context of the virtual router to which the VRF belongs.

Field descriptions

VRF - name of the VRF

Default RD - default route distinguisher for the VRF

VRF IP Router ID - IP address that uniquely identifies the router

Default TTL - time to live value in the IP header

Reassemble Timeout - value to time out reassembled packets

Interface Configured - interface configured for the VRF

Import VPN Route Target Extended Communities - list of VPNs from which the VRF accepts routing information

Export VPN Route Target Extended Communities - list of VPNs to which the VRF sends update messages

Import Route-map - route map associated with the VRF that filters routes received by the VRF

Export Route-map - route map associated with the VRF that filters routes forwarded by the VRF

Example
host1#show ip vrf detail
VRF  vpn1; Default RD 1:1
  VRF IP Router ID 10.1.1.1
  Default TTL: 127
  Reassemble Timeout: 30
  Interface Configured:
    null0  atm4/0.77
  Import VPN Route Target Extended Communities:
     1:2
  Export VPN Route Target Extended Communities:
     1:1 1:2
  Import Route-map : map2
  Export Route-map : map1
VRF  vpn2; Default RD 1:3
  Interface Configured:
    null0  fastEthernet3/0  atm4/0.21
  Import VPN Route Target Extended Communities:
     3:3 10.4.3.0:1
  Export VPN Route Target Extended Communities:
     10.4.3.0:1
  Import Route-map : map2
  No Export Route-map 
show ip vrf interfaces

Use to display summary information about all interfaces associated with all VRFs configured in a virtual router.

Use the detail keyword to display detailed information about the interfaces.

Field descriptions

Interface - interface type and interface specifier

IP-Address - IP address of the interface

Status - status of the interface

Protocol - status of the line protocol

VRF - name of the VRF with which the interface is associated

interface status - status of the interface

line protocol - status of the line protocol

Link up/down trap - status of SNMP link up/down traps on the interface

Internet address - IP address of the interface

IP Statistics Rcvd:

local destination - frames with this router as their destination

hdr errors - number of packets containing header errors

addr errors - number of packets containing addressing errors

unkn proto - number of packets received containing unknown protocols

discards - number of discarded packets

IP Statistics Frags:

reasm ok - number of reassembled packets

reasm req - number of requests for reassembly

reasm fails - number of reassembly failures

frag ok - number of packets fragmented successfully

frag creates - number of frames requiring fragmentation

frag fails - number of packets unsuccessfully fragmented

IP Statistics Sent:

generated - number of packets generated

no routes - number of packets that could not be routed

discards - number of packets that could not be routed that were discarded

ICMP Statistics Rcvd:

errors - number of error packets received

dst unreach - number of packets received with destination unreachable

time exceed - number of packets received with time-to-live exceeded

param probs - number of packets received with parameter errors

src quench - number of source quench packets received

redirect - number of receive packet redirects

echo req - number of echo request (PING) packets

echo rpy - number of echo replies received

timestamp req - number of requests for a timestamp

timestamp rpy - number of replies to timestamp requests

addr mask req - number of address mask requests

addr mask rpy - number of address mask replies

ICMP Statistics Sent:

errors - number of error packets sent

dst unreach - number of packets sent with destination unreachable

time excd - number of packets sent with time-to-live exceeded

param probs - number of packets sent with parameter errors

src quench - number of source quench packets sent

redirect - number of send packet redirects

timestamp req - number of requests for a timestamp

timestamp rpy - number of replies to timestamp requests

addr mask req - number of address mask requests

addr mask rpy - number of address mask replies

In Received Packets, Bytes - total packets and bytes received on an IP interface

Unicast - unicast packets and bytes received on an IP interface

Multicast - multicast packets and bytes received on an IP interface

In Forwarded Packets, Bytes - packets and bytes forwarded into an output IP interface

In Total Dropped Packets, Bytes - total packets and bytes discarded on a receive IP interface

In Policed Packets - packets discarded on a receive IP interface because of token bucket limiting

In Invalid Source Address Packets - packets discarded on a receive IP interface because of invalid IP source address (sa-validate enabled)

In Error Packets - packets discarded on a receive IP interface because of IP header errors

In Discarded Packets - packets discarded on the ingress interface because of a configuration problem rather than a problem with the packet itself

In Fabric Dropped Packets - packets discarded on a receive IP interface because of internal fabric congestion

Out Forwarded Packets, Bytes - packets and bytes forwarded out an IP interface

Unicast - unicast packets and bytes forwarded out an IP interface

Multicast - multicast packets and bytes forwarded out an IP interface

Out Requested Packets, Bytes - packets and bytes requested to be forwarded out an IP interface

Out Total Dropped Packets, Bytes - total packets and bytes dropped by an IP interface on output

Out Scheduler Drops Committed Packets, Bytes - committed packets and bytes dropped because of out queue threshold limit

Out Scheduler Drops Conformed Packets, Bytes - conformed packets and bytes dropped because of out queue threshold limit

Out Scheduler Drops Exceeded Packets, Bytes - exceeded packets and bytes dropped because of out queue threshold limit

Out Policed Packets - packets discarded on the egress interface because of token bucket limiting

Out Discarded Packets - packets discarded on the egress interface because of a configuration problem rather than a problem with the packet itself

Out Fabric Dropped Packets - packets dropped because of internal fabric congestion

Example
host1:PE1#show ip vrf interfaces
Interface              IP-Address        Status Protocol   VRF
null0                  255.255.255.255/32  up         up   pe11
atm4/0.134             4.4.4.2/24          up         up   pe11
null0                  255.255.255.255/32  up         up   pe12
ip0                    6.6.6.8/24          up         up   pe12
null0                  255.255.255.255/32  up         up   pe13
loopback1              7.7.7.2/24          up         up   pe13
host1:PE1#show ip vrf interfaces detail
null0 is up, line protocol is up
  VRF: pe11
  Link up/down trap is disabled
  Internet address is 255.255.255.255/255.255.255.255
IP statistics:
  Rcvd:  0 local destination
         0 hdr errors, 0 addr errors
         0 unkn proto, 0 discards
  Frags: 0 reasm ok, 0 reasm req, 0 reasm fails
         0 frag ok, 0 frag creates, 0 frag fails
  Sent:  0 generated, 0 no routes, 0 discards
ICMP statistics:
  Rcvd:  0 errors, 0 dst unreach, 0 time exceed
         0 param probs, 0 src quench, 0 redirect,
         0 echo req, 0 echo rpy
         0 timestmp req, 0 timestmp rpy
         0 addr mask req, 0 addr mask rpy
  Sent:  0 errors, 0 dst unreach, 0 time excd
         0 param probs, 0 src qnch, 0 redirect
         0 timestamp req, 0 timestamp rpy
         0 addr mask req, 0 addr mask rpy
atm4/0.134 is up, line protocol is up                                          
  VRF: pe11
  Link up/down trap is disabled
  Internet address is 4.4.4.2/255.255.255.0
IP statistics:
  Rcvd:  0 local destination
         0 hdr errors, 0 addr errors
         0 unkn proto, 0 discards
  Frags: 0 reasm ok, 0 reasm req, 0 reasm fails
         0 frag ok, 0 frag creates, 0 frag fails
  Sent:  0 generated, 0 no routes, 0 discards
ICMP statistics:
  Rcvd:  0 errors, 0 dst unreach, 0 time exceed
         0 param probs, 0 src quench, 0 redirect,
         0 echo req, 0 echo rpy
         0 timestmp req, 0 timestmp rpy
         0 addr mask req, 0 addr mask rpy
  Sent:  0 errors, 0 dst unreach, 0 time excd
         0 param probs, 0 src qnch, 0 redirect
         0 timestamp req, 0 timestamp rpy
         0 addr mask req, 0 addr mask rpy
  In Received Packets 0, Bytes 0
    Unicast Packets 0, Bytes 0
    Multicast Packets 0, Bytes 0
  In Forwarded Packets 0, Bytes 0
  In Total Dropped Packets 0, Bytes 0
    In Policed Packets 0
    In Invalid Source Address Packets 0
    In Error Packets 0
    In Discarded Packets 0
    In Fabric Dropped Packets 0
  Out Forwarded Packets 0, Bytes 0
    Unicast Packets 0, Bytes 0
    Multicast Packets 0, Bytes 0
  Out Requested Packets 0, Bytes 0
  Out Total Dropped Packets 0, Bytes 0
    Out Scheduler Drops Committed Packets 0, Bytes 0
    Out Scheduler Drops Conformed Packets 0, Bytes 0
    Out Scheduler Drops Exceeded  Packets 0, Bytes 0
    Out Policed Packets 0
    Out Discarded Packets 0
    Out Fabric Dropped Packets 0 
show mpls tunnels

Use to display status and configuration for all tunnels or for a specific tunnel in the current router context.

A result of Incomplete Configuration in the display indicates either no tunnel endpoint or no label distribution protocol.

Field descriptions

State - status of tunnel, up or down

Out Label - in the default case for a BGP/MPLS VPN, this will be Variable Interface, which indicates that a packet exiting the interface is going through a variable interface and that one of the labels listed further in the display will be prepended to the packet

Mpls Statistics

pkts - number of packets sent across tunnel

hcpkts - number of high-capacity (64-bit) packets sent across tunnel

octets - number of octets sent across tunnel

hcoctets - number of high-capacity (64-bit) octets sent across tunnel

errors - number of packets that are dropped for some reason before being sent

discardPkts - number of packets that are discarded due to lack of buffer space before being sent

Labels - list of labels associated with the variable interface; one will be selected to be prepended to packets before being sent across tunnel

Examples

The output varies between the default behavior—when the system creates a VPN interface per next-hop PE—and the behavior resulting when you issue the ip mpls vpn-interface per-label command—when the system creates a VPN interface for each received stacked label.

VPN interface per next-hop PE:
host12#show mpls tunnels
LSP vpnIngress-21 to   3.3.3.3
State:  Up
Out label is Variable Interface
102 pkts, 0 hcPkts, 13464 octets
0 hcOctets, 0 errors, 0 discardPkts
Labels:
16 17 18 19
VPN interface per received stacked label:
host12#show mpls tunnels
LSP vpnInL16-21 to   3.3.3.3
State:  Up
Out label is 16 on Label 33
102 pkts, 0 hcPkts, 13464 octets
0 hcOctets, 0 errors, 0 discardPkts
LSP vpnInL17-21 to   3.3.3.3
State:  Up
Out label is 17 on Label 33
102 pkts, 0 hcPkts, 13464 octets
0 hcOctets, 0 errors, 0 discardPkts
LSP vpnInL18-21 to   3.3.3.3
State:  Up
Out label is 18 on Label 33
102 pkts, 0 hcPkts, 13464 octets
0 hcOctets, 0 errors, 0 discardPkts
LSP vpnInL19-21 to   3.3.3.3
State:  Up
Out label is 19 on Label 33
102 pkts, 0 hcPkts, 13464 octets
0 hcOctets, 0 errors, 0 discardPkts
undebug ip mbgp

Use to disable the display of information on MP-BGP logs that was previously enabled with the debug ip mbgp command.

Example
host1#undebug ip mbgp
There is no no version.

[Contents] [Prev] [Next] [Index] [Report an Error]