Re: route command and non-local gateways


StivH wrote:
> Route propogation is the issue that concerns me. The OSPF and BGP setup
> with in the network is large and I do not have full visibility of it,
> so I simply do not want to be injecting routes into it. Yes, I can
> exercise some control over the redistribution of that route (eg on GW1,
> it may be that I just don't need to redist statics into OSPF - I
> haven't checked yet). The thing is, this is a requirement for a single
> user accessing a single application - I've got 500 other users on this
> site alone (and then there;s a global WAN which is out of my sphere of
> influence), so I don't want to start implementing a solution to 1
> person's problem which at some point down the line causes 500 other
> people a problem. Hence, I was looking for the solution which has the
> most limited scope. I saw in man route the remark that I previously
> posted regarding "the specified gateway must be reachable". To me, if
> the specified gateway is on a net that is already in the WS's route
> table, then it's reachable. ...

I ran into this myself years ago. After all, route is an IP tool. You
would think that they mean "reachable" in the IP sense.

But, noooooo ...

They mean link layer reachability, ie., the GW must be on the local
wire. When you think about it, it makes sense as this would be
required for ARP to work.

> ... I thought this would be a nice clean
> solution, but obviously it's not going to be. I think I'll have to move
> WS1 (which will give me a problem when FW1 is removed later this year,
> but I'll cross that bridge later!

good luck,
prg

.

Relevant Pages

  • Re: route command and non-local gateways
    ... Route propogation is the issue that concerns me. ... it may be that I just don't need to redist statics into OSPF - I ... posted regarding "the specified gateway must be reachable". ...
    (comp.os.linux.networking)
  • Equal cost paths from separate OSPF Processes
    ... the network statements are valid in all OSPF processes. ... interface Serial0.300 point-to-point ... router#sh ip route ospf ... connected, includes subnets in redistribution ...
    (comp.dcom.sys.cisco)
  • Re: OT - Quagga/CARP
    ... of the routers loses connectivity to the destination network. ... Does the combination of CARP and quagga OSPF work once it's configured ... You're talking about using CARP and OSPF on the edge routers, ... each router has a route through the ...
    (freebsd-net)
  • Re: OT - Quagga/CARP
    ... I still have to kill and restart the zebra and ospf processes entirely for them to pick things up correctly. ... We do some scripting for automation of firewall rules for the routers to protect themselves, but at this point I have no need of the UNIX command line on these machines on a regular basis. ... If everything is just in zebra/ quagga, then I just have one file to manage - Quagga.conf - for all backup, change control and managing lots of boxes in the field means I want much of the management driven straight out of our customer management application. ... each router has a route through the ...
    (freebsd-net)
  • Re: Possible hi-jacking of ospf chain.
    ... network and pollute the route table in whatever fashion you wish... ... you could begin routing traffic through you to do packet capture and analysis or you could route traffic to a black hole, ... Best practice is to use MD5 hashing for OSPF passwords. ... OSPF LS Acknowledge and OSPF Hello packet. ...
    (Pen-Test)