Lab 02 — BGP/OSPF Mutual Redistribution

Topology

[---- OSPF Area 0, BGP AS 65001 ----][---------- BGP AS 65002 ----------]

R1 ----- R2 ----- R3 (ASBR) ----- R4 ----- R5
Lo:1     Lo:2     Lo:3            Lo:4     Lo:5
                  OSPF + eBGP     iBGP --- iBGP

R1-R2: 10.12.12.0/24
R2-R3: 10.23.23.0/24
R3-R4: 10.34.34.0/24 (eBGP, 65001 ↔ 65002)
R4-R5: 10.45.45.0/24 (iBGP)

Goal

Out of the box everything establishes (OSPF neighbors, BGP neighbors), but routes don't cross the boundary because no redistribution is configured. Configure mutual redistribution on R3 such that ping 5.5.5.5 source 1.1.1.1 from R1 and ping 1.1.1.1 source 5.5.5.5 from R5 both succeed.

Setup

• Import the YAML into CML and start all five nodes.
• Wait for boot, then open consoles to R1, R3, and R5 at minimum (R3 is where you'll do all the work; R1 and R5 are the test endpoints).

Verify the Base State

This should all just work — no fixing needed.

• R1: show ip ospf neighbor — expect R2 in FULL state.
• R2: show ip ospf neighbor — expect R1 and R3 both FULL.
• R3: show ip ospf neighbor — expect R2 in FULL.
• R3: show ip route ospf — should show 1.1.1.1/32 and 2.2.2.2/32 as O routes.
• R3: show ip bgp summary — expect R4 (10.34.34.4) Established with one prefix received.
• R4: show ip bgp summary — expect both R3 and R5 Established.
• R5: show ip bgp summary — expect R4 Established.
• R5: show ip bgp — should see 4.4.4.4/32 (and only that).
• R1: show ip route — should NOT see anything from the BGP side yet. Confirm.
• R1: ping 5.5.5.5 source 1.1.1.1 — expect failure. This is your baseline.

Step 1 — Redistribute BGP into OSPF

So OSPF routers learn about the BGP side.

• On R3, enter:

  router ospf 1
   redistribute bgp 65001 subnets

• On R3: show ip route ospf — no change expected (R3 already learns those via BGP).
• On R2: show ip route ospf — should now see 4.4.4.4/32 and 5.5.5.5/32 as O E2.
• On R1: show ip route ospf — same: O E2 routes for 4.4.4.4/32 and 5.5.5.5/32.
• From R1: ping 5.5.5.5 source 1.1.1.1 — still expect failure (return path isn't there yet).

Step 2 — Redistribute OSPF into BGP

So BGP routers learn about the OSPF side.

• On R3, enter:

  router bgp 65001
   redistribute ospf 1

• R3: show ip bgp — should now show 1.1.1.1/32, 2.2.2.2/32, and 3.3.3.3/32 as locally originated (> with origin code ? for incomplete).
• R4: show ip bgp — should see 1.1.1.1/32, 2.2.2.2/32, 3.3.3.3/32 learned from 10.34.34.3.
• R5: show ip bgp — same prefixes, learned from 10.45.45.4 (via iBGP).
• R5: show ip route bgp — should show all three OSPF-side loopbacks installed.

Step 3 — End-to-End Test

• From R1: ping 5.5.5.5 source 1.1.1.1 — should succeed.
• From R5: ping 1.1.1.1 source 5.5.5.5 — should succeed.
• From R1: traceroute 5.5.5.5 source 1.1.1.1 — confirm path R1 → R2 → R3 → R4 → R5.

Step 4 — Observe and Understand

• Remove the subnets keyword: router ospf 1 then redistribute bgp 65001. Watch what happens (show ip route ospf on R1 — the /32s disappear because they're not classful boundary networks).
• Re-add subnets. Verify routes return.
• On R3: show ip ospf database external — see the Type-5 LSAs being injected.
• On R3: show ip bgp — note the origin code ? (incomplete) on redistributed routes versus i (IGP) on network-statement routes.

Step 5 — Metric Experiments

• On R3, change the redistribution to E1: router ospf 1 → redistribute bgp 65001 subnets metric-type 1.
• On R1: show ip route ospf — note the metric of 4.4.4.4/32 now includes the path cost to R3 plus the redistribution metric, instead of just the redistribution metric.
• Switch back to E2.

Bonus (only if you have time)

• Add a route-map on R3 that only redistributes 1.1.1.1/32 into BGP (drop R2 and R3's loopbacks). Verify on R5.
• Use redistribute ospf 1 match internal external 1 external 2 instead of plain redistribute ospf 1 and explain to yourself when each match keyword matters.
• Save the configs and export the lab.

The pattern in both labs is the same and worth internalizing: observe → hypothesize → change one thing → verify → repeat. Don't fix three things at once or you won't know which fix did what.

Verification Command Reference

OSPF state

show ip ospf neighbor
show ip ospf neighbor detail
show ip ospf interface
show ip ospf interface brief
show ip ospf
show ip ospf database
show ip ospf database external          ! Type-5 LSAs (redistributed routes)
show ip ospf database router
show ip route ospf
show ip protocols                        ! confirms redistribute statements

BGP state

show ip bgp summary
show ip bgp
show ip bgp <prefix>
show ip bgp neighbors <ip>
show ip bgp neighbors <ip> advertised-routes
show ip bgp neighbors <ip> routes
show ip route bgp

Redistribution-specific checks

show ip protocols                        ! shows what's being redistributed in/out
show ip route                            ! look for code letters: O E1, O E2, B
show ip ospf database external           ! confirms BGP routes are being injected
show ip bgp                              ! origin code "?" means redistributed in

Connectivity test

ping <ip> source <loopback-or-interface>
traceroute <ip> source <loopback-or-interface>

Forcing a refresh after redistribution change

clear ip ospf process                    ! prompts for confirmation
clear ip bgp <neighbor-ip> soft out

Basic Config Command Reference

OSPF process

configure terminal
router ospf <process-id>
 router-id <a.b.c.d>
 passive-interface <interface>
 passive-interface default
 no passive-interface <interface>

Activate OSPF on an interface

! Modern style — per-interface
interface GigabitEthernet0/0
 ip ospf <process-id> area <area-id>

! Legacy style — under the OSPF process
router ospf 1
 network 10.12.12.0 0.0.0.255 area 0

BGP process and neighbors

router bgp <local-AS>
 bgp log-neighbor-changes
 neighbor <ip> remote-as <as>
 neighbor <ip> update-source Loopback0
 neighbor <ip> next-hop-self
 network <prefix> mask <mask>

Redistribution — the key commands for this lab

! BGP into OSPF — "subnets" is REQUIRED for non-classful prefixes
router ospf 1
 redistribute bgp <as> subnets
 redistribute bgp <as> subnets metric <cost>
 redistribute bgp <as> subnets metric-type 1     ! E1 (cumulative cost)
 redistribute bgp <as> subnets metric-type 2     ! E2 (default, redist cost only)
 redistribute bgp <as> subnets route-map <name>

! OSPF into BGP
router bgp <as>
 redistribute ospf <process-id>
 redistribute ospf <process-id> match internal external 1 external 2
 redistribute ospf <process-id> route-map <name>
 bgp redistribute-internal                ! needed only if redistributing iBGP-learned routes

Route-map for filtering redistribution (bonus task)

! Permit only specific prefixes
ip prefix-list ALLOW-R1-LOOP seq 10 permit 1.1.1.1/32

route-map FILTER-OSPF-TO-BGP permit 10
 match ip address prefix-list ALLOW-R1-LOOP

! Apply it
router bgp 65001
 redistribute ospf 1 route-map FILTER-OSPF-TO-BGP

Route-map with tags (loop prevention with two ASBRs)

! On the way OUT — tag the redistributed routes
route-map TAG-INTO-OSPF permit 10
 set tag 100

route-map BLOCK-TAGGED-INTO-BGP deny 10
 match tag 100
route-map BLOCK-TAGGED-INTO-BGP permit 20

router ospf 1
 redistribute bgp 65001 subnets route-map TAG-INTO-OSPF
router bgp 65001
 redistribute ospf 1 route-map BLOCK-TAGGED-INTO-BGP

Save the config

end
copy running-config startup-config
! or shorthand:
wr

Route Code Quick Reference

BGP Origin Codes Quick Reference