AR34没有学习到两条等价默认路由，只从AR30学习到一条。

最新推荐文章于 2024-08-09 20:32:59 发布

晶晶娃在战斗

最新推荐文章于 2024-08-09 20:32:59 发布

阅读量666

点赞数 1

分类专栏：备考文章标签：网络

本文链接：https://blog.csdn.net/qq_40909772/article/details/108916340

版权

备考专栏收录该内容

9 篇文章 4 订阅

订阅专栏

题目：AR34没有学习到两条等价默认路由，只从AR30学习到一条。（AR31的区域ID配置错误）

一、故障根因判断

故障的根本原因是AR31配置了错误的区域ID，导致AR31与AR34无法建立ISIS邻居关系。
二、故障分析

2.1 故障重现，在AR34上查看路由表，查询结果如下：

-----------------------------------------------------------------------------------------------------------------------------------------------------

[AR34]dis ip routing-table
Route Flags: R - relay, D - download to fib
------------------------------------------------------------------------------
Routing Tables: Public
Destinations : 14 Routes : 14

Destination/Mask Proto Pre Cost Flags NextHop Interface

0.0.0.0/0 ISIS-L1 15 10 D 10.5.34.30 GigabitEthernet0/0/0
10.5.1.30/32 ISIS-L1 15 10 D 10.5.34.30 GigabitEthernet0/0/0
10.5.1.34/32 Direct 0 0 D 127.0.0.1 LoopBack0
10.5.14.0/24 Direct 0 0 D 10.5.14.34 GigabitEthernet0/0/1
10.5.14.34/32 Direct 0 0 D 127.0.0.1 GigabitEthernet0/0/1
10.5.14.255/32 Direct 0 0 D 127.0.0.1 GigabitEthernet0/0/1
10.5.34.0/24 Direct 0 0 D 10.5.34.34 GigabitEthernet0/0/0
10.5.34.34/32 Direct 0 0 D 127.0.0.1 GigabitEthernet0/0/0
10.5.34.255/32 Direct 0 0 D 127.0.0.1 GigabitEthernet0/0/0
10.5.129.0/24 ISIS-L1 15 20 D 10.5.34.30 GigabitEthernet0/0/0
127.0.0.0/8 Direct 0 0 D 127.0.0.1 InLoopBack0
127.0.0.1/32 Direct 0 0 D 127.0.0.1 InLoopBack0
127.255.255.255/32 Direct 0 0 D 127.0.0.1 InLoopBack0
255.255.255.255/32 Direct 0 0 D 127.0.0.1 InLoopBack0
-----------------------------------------------------------------------------------------------------------------------------------------------------

由以上查询结果可知，AR34上确实只存在一条缺省路由，下一跳指向AR30，缺少一条指向AR31的默认路由，因为AR34和AR31之间运行的是ISIS协议所以需要进一步判断ISIS的邻居关系是否正常建立。

2.2 在AR34上使用display isis peer命令见查ISIS的邻居关系是否正常建立，测试结果如下：

-----------------------------------------------------------------------------------------------------------------------------------------------------

<AR34>display isis peer

Peer information for ISIS(1)

System Id Interface Circuit Id State HoldTime Type PRI
-------------------------------------------------------------------------------
0000.0000.0030 GE0/0/0 0000.0000.0034.01 Up 29s L1 64

Total Peer(s): 1

-----------------------------------------------------------------------------------------------------------------------------------------------------

由以上测试结果可知，AR34至于AR30建立了ISIS邻居关系，与AR31没有建立ISIS邻居关系，需要进一步排查邻居无法建立的原因。

2.3 在AR34上查看ISIS相关参数，结果如下所示：

-----------------------------------------------------------------------------------------------------------------------------------------------------

<AR34>display isis brief

ISIS Protocol Information for ISIS(1)
-------------------------------------
SystemId: 0000.0000.0034 System Level: L1
Area-Authentication-mode: NULL
Domain-Authentication-mode: NULL
Ipv6 is not enabled
ISIS is in invalid restart status
ISIS is in protocol hot standby state: Real-Time Backup

Interface: 10.5.34.34(GE0/0/0)
Cost: L1 10 L2 10 Ipv6 Cost: L1 10 L2 10
State: IPV4 Up IPV6 Down
Type: BROADCAST MTU: 1497
Priority: L1 64 L2 64
Timers: Csnp: L1 10 L2 10 ,Retransmit: L12 5 , Hello: L1 10 L2 10 ,
Hello Multiplier: L1 3 L2 3 , LSP-Throttle Timer: L12 50

Interface: 10.5.14.34(GE0/0/1)
Cost: L1 10 L2 10 Ipv6 Cost: L1 10 L2 10
State: IPV4 Up IPV6 Down
Type: BROADCAST MTU: 1497
Priority: L1 64 L2 64
Timers: Csnp: L1 10 L2 10 ,Retransmit: L12 5 , Hello: L1 10 L2 10 ,
Hello Multiplier: L1 3 L2 3 , LSP-Throttle Timer: L12 50

。。。。。。

-----------------------------------------------------------------------------------------------------------------------------------------------------

由以上测试结果可知，AR34是level -1类型的路由器，并且接口G0/0/0和G0/0/1都发布在了ISIS中，链路的cost相同，接口类型位广播，需要进一步检查AR34和AR31用连建立ISIS邻居的接口的连通性。

2.4 在AR34使用ping 10.5.14.31命令，测试与AR31的g0/0/1接口的连通性，测试结果如下：

-----------------------------------------------------------------------------------------------------------------------------------------------------

<AR34>ping 10.5.14.31
PING 10.5.14.31: 56 data bytes, press CTRL_C to break
Reply from 10.5.14.31: bytes=56 Sequence=1 ttl=255 time=90 ms
Reply from 10.5.14.31: bytes=56 Sequence=2 ttl=255 time=20 ms
Reply from 10.5.14.31: bytes=56 Sequence=3 ttl=255 time=30 ms
Reply from 10.5.14.31: bytes=56 Sequence=4 ttl=255 time=20 ms
Reply from 10.5.14.31: bytes=56 Sequence=5 ttl=255 time=10 ms

--- 10.5.14.31 ping statistics ---
5 packet(s) transmitted
5 packet(s) received
0.00% packet loss
round-trip min/avg/max = 10/34/90 ms

-----------------------------------------------------------------------------------------------------------------------------------------------------

以上测试结果表明，AR34和AR31用连建立ISIS邻居的接口的连通性正常。接下来需要在AR31检查。

2.5 在AR31上使用命令，检查ISIS的邻居，检查结果如下：

-----------------------------------------------------------------------------------------------------------------------------------------------------
<AR31>dis isis peer

Peer information for ISIS(1)

System Id Interface Circuit Id State HoldTime Type PRI
-------------------------------------------------------------------------------
0000.0000.0028 GE0/0/2 0000.0000.0031.02 Up 24s L2 64

Total Peer(s): 1

-----------------------------------------------------------------------------------------------------------------------------------------------------

由以上检查结果可知，AR31只与AR28形成了level-2的邻居关系，没有和AR34形成邻居关系。接下来需要检查AR31的ISIS的相关参数。

2.6 在AR31上使用命令检查ISIS的相关配置参数，检查就结果如下：

-----------------------------------------------------------------------------------------------------------------------------------------------------

<AR31>display isis brief

ISIS Protocol Information for ISIS(1)
-------------------------------------
SystemId: 0000.0000.0031 System Level: L12
Area-Authentication-mode: NULL
Domain-Authentication-mode: NULL
Ipv6 is not enabled
ISIS is in invalid restart status
ISIS is in protocol hot standby state: Real-Time Backup

Interface: 10.5.14.31(GE0/0/1)
Cost: L1 10 L2 10 Ipv6 Cost: L1 10 L2 10
State: IPV4 Up IPV6 Down
Type: BROADCAST MTU: 1497
Priority: L1 64 L2 64
Timers: Csnp: L1 10 L2 10 ,Retransmit: L12 5 , Hello: L1 10 L2 10 ,

Hello Multiplier: L1 3 L2 3 , LSP-Throttle Timer: L12 50

Interface: 10.5.130.31(GE0/0/2)
Cost: L1 10 L2 10 Ipv6 Cost: L1 10 L2 10
State: IPV4 Up IPV6 Down
Type: BROADCAST MTU: 1497
Priority: L1 64 L2 64
Timers: Csnp: L1 10 L2 10 ,Retransmit: L12 5 , Hello: L1 10 L2 10 ,

Hello Multiplier: L1 3 L2 3 , LSP-Throttle Timer: L12 50

-----------------------------------------------------------------------------------------------------------------------------------------------------

通过以上检查结果可知，AR31的各相关接口都已经加入到ISIS进程中了，并且AR31位level1-2路由器，接下来需要对比AR34和AR31互发的ISIS报文是否有错误。

2.8 在AR34上使用display isis eroor interface g0/0/1命令，查看是否存在计数报错，检查结果如下所示：

-----------------------------------------------------------------------------------------------------------------------------------------------------

<AR34>dis isis error interface g0/0/1
Statistics of errored packets for GE0/0/1:
--------------------------------------------------------------------
LSP packet errors:
Longer LSP : 0 Smaller LSP : 0
Mismatched Level : 0 Invalid Sysid : 0
Zero Sequence Number : 0 Illegal IS Type : 0
Zero Checksum : 0 Incorrect Checksum : 0
Bad Authentication : 0 Bad Auth Count : 0
More Protocol TLV : 0 Bad Nbr TLV : 0
Bad Extended IS TLV : 0 Bad IF Addr TLV : 0
Bad Reach TLV : 0 Bad Inter Domain TLV : 0
Mismatched Area Id(L1) : 0 Bad TLV Length : 0
Bad Alias TLV : 0 Bad Area TLV : 0
Bad SRLG TLV : 0 Unknown Adjacency : 0
Bad Protocol ID : 0 Bad Version : 0
Zero Lifetime : 0 Bad Ext Reach TLV : 0
Bad TE Router ID TLV : 0 Bad TE Sub TLV : 0

Hello packet errors:
Bad Packet Length : 0 Reserved CircType : 0
Repeated System ID : 0 Bad Circuit Type : 0
Longer packet : 0 More Area Addr : 0
Longer Area Addr : 0 Bad Area Addr TLV : 0
More IF Addr : 0 Bad Formatted IF TLV : 0
More Nbr SNPA(LAN) : 0 Invalid Sysid : 0
Bad TLV Length : 0 Zero HoldingTime : 0
Unusable IP Addr : 0 Repeated IPv4 Addr : 0
Mismatched Area Addr(L1): 255 Mismatched Proto : 0
SNPA Conflicted(LAN) : 0 Mismatched Level : 0
Mismatched Max Area Addr: 0 Bad Authentication : 0
More Auth TLV : 0 3-Way Option Error(P2P) : 0
No Area Addr TLV : 0 Bad Protocol ID : 0
Bad Version : 0 Invalid IPv6 Addr : 0
More IPv6 IF Addr : 0 Duplicate IPv6 Addr : 0
More Optional Checksum : 0 Bad Optional Checksum : 0
-----------------------------------------------------------------------------------------------------------------------------------------------------

由以上测试结果发现存在“Mismatched Area Addr(L1): 255 ”的错误提示，说明AR34和AR31互相能够正常发送level-1的hello报文，AR34和AR31无法建立ISIS邻居关系的原因是Hello报文中区域ID不一致，进一步查看AR34和AR31的区域配置。

2.9 在AR34上使用display isis lsdb local verbose命令，查看当前AR34的区域信息，结果如下所示：

<AR34>display isis lsdb local verbose

-----------------------------------------------------------------------------------------------------------------------------------------------------

Database information for ISIS(1)
--------------------------------

Level-1 Link State Database

LSPID Seq Num Checksum Holdtime Length ATT/P/OL
-------------------------------------------------------------------------------
0000.0000.0034.00-00* 0x0000000a 0xe751 971 102 0/0/0
SOURCE 0000.0000.0034.00
NLPID IPV4
AREA ADDR 49.0005
INTF ADDR 10.5.1.34
INTF ADDR 10.5.34.34
INTF ADDR 10.5.14.34
NBR ID 0000.0000.0034.01 COST: 10

. . . . . .

-----------------------------------------------------------------------------------------------------------------------------------------------------

根据以上结果可知AR34的区域ID为49.0005。

2.10 在AR31上使用display isis lsdb local verbose命令，查看当前AR31的区域信息，结果如下所示：

<AR31>display isis lsdb local verbose

-----------------------------------------------------------------------------------------------------------------------------------------------------

Database information for ISIS(1)
--------------------------------

Level-1 Link State Database

LSPID Seq Num Checksum Holdtime Length ATT/P/OL
-------------------------------------------------------------------------------
0000.0000.0031.00-00* 0x0000000d 0xd179 858 88 1/0/0
SOURCE 0000.0000.0031.00
NLPID IPV4
AREA ADDR 47.0005

. . . . . .
-----------------------------------------------------------------------------------------------------------------------------------------------------

根据以上结果可知AR34的区域ID为47.0005，并且ATT比特位置1,说明AR31上没有配置attached-bit advertise never命令。

综上分析，发现AR34和AR31无法建立邻居的原因是双方的区域ID不一致，需要AR31的区域ID与AR34的区域ID保持一致。

三、故障处理

3.1 在AR31上执行以下命令：

sys

isis 1

undo network-entity 47.0005.0000.0000.0031.00

network-entity 49.0005.0000.0000.0031.00

执行完以上命令后，在AR34上执行以下命令进行测试：

display isis peer

display isis lsdb

display ip routing-table