 Feedback
|
Table Of Contents
OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements
Prerequisites for the OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements
Information About the OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements
Previous Methods to Limit the Number of IP Prefixes Carried in LSAs
Feature Overview of the OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements
How to Exclude Connected IP Prefixes from OSPF LSAs
Excluding IP Prefixes per OSPF Process
Excluding IP Prefixes on a Per-Interface Basis
Troubleshooting IP Prefix Suppression
Excluding IP Prefixes from LSA Advertisements for an OSPF Process: Example
Excluding IP Prefixes from LSA Advertisements for a Specified Interface: Example
Feature Information for the OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements
OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements
First Published: June 28, 2007Last Updated: June 28, 2007This document describes the Open Shortest Path First (OSPF) mechanism to exclude IP prefixes of connected networks from link-state advertisements (LSAs). When OSPF is deployed in large networks, limiting the number of IP prefixes that are carried in the OSPF LSAs can speed up OSPF convergence.
This feature can also be utilized to enhance the security of an OSPF network by allowing the network administrator to prevent IP routing toward internal nodes.
Finding Feature Information in This Module
Your Cisco IOS software release may not support all of the features documented in this module. To reach links to specific feature documentation in this module and to see a list of the releases in which each feature is supported, use the "Feature Information for the OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements" section.
Finding Support Information for Platforms and Cisco IOS and Catalyst OS Software Images
Use Cisco Feature Navigator to find information about platform support and Cisco IOS and Catalyst OS software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.
Contents
•
Prerequisites for the OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements
•
•
•
Prerequisites for the OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements
Before you can use the mechanism to exclude IP prefixes from LSAs, the OSPF routing protocol must be configured.
Information About the OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements
One way to improve OSPF network convergence is to limit the number of IP prefixes carried in LSAs.
•
•
Previous Methods to Limit the Number of IP Prefixes Carried in LSAs
Configuring interfaces as unnumbered limits IP prefixes. However, for network management and the ease of identifying and troubleshooting numbered interfaces, you might want to have numbered interfaces and also want to limit the number of IP advertisements.
Feature Overview of the OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements
The OSPF mechanism to exclude connected IP prefixes from LSAs allows network administrators to control what IP prefixes are installed into LSAs. This functionality is implemented for router and network LSAs in the following manner:
•
•
Note
Globally Suppressing IP Prefix Advertisements per OSPF Process
You can reduce OSPF convergence time by configuring the OSPF process on a router to prevent the advertisement of all IP prefixes by using the prefix-suppression command in router configuration mode.
Note
Suppressing IP Prefix Advertisements on a Per-Interface Basis
You can explicitly configure an OSPF interface not to advertise its IP network to its neighbors by using the ip ospf prefix-suppression command in interface configuration mode.
Note
How to Exclude Connected IP Prefixes from OSPF LSAs
This section describes how to configure two alternative methods to suppress IP prefix advertisements. You can suppress IP prefix advertisements per OSPF process or per interface. This section also explains how you can troubleshoot IP prefix suppression.
•
•
•
Excluding IP Prefixes per OSPF Process
This section provides the necessary steps to exclude IP prefixes from connected networks for all interface types except for loopbacks, secondary IP addresses, and passive interfaces for an OSPF process.
SUMMARY STEPS
1.
2.
3.
4.
5.
6.
DETAILED STEPS
Examples
In the following example, output from the show ip ospf command shows that IP prefix advertisement has been suppressed for OSPF process 1.
Router# show ip ospfRouting Process "ospf 1" with ID 10.0.0.6Start time: 00:00:04.912, Time elapsed: 00:02:35.184Supports only single TOS(TOS0) routesSupports opaque LSASupports Link-local Signaling (LLS)Supports area transit capabilityIt is an area border routerRouter is not originating router-LSAs with maximum metricInitial SPF schedule delay 5000 msecsMinimum hold time between two consecutive SPFs 10000 msecsMaximum wait time between two consecutive SPFs 10000 msecsIncremental-SPF disabledMinimum LSA interval 5 secsMinimum LSA arrival 1000 msecsLSA group pacing timer 240 secsInterface flood pacing timer 33 msecsRetransmission pacing timer 66 msecsNumber of external LSA 2. Checksum Sum 0x0132C8Number of opaque AS LSA 0. Checksum Sum 0x000000Number of DCbitless external and opaque AS LSA 0Number of DoNotAge external and opaque AS LSA 0Number of areas in this router is 3. 3 normal 0 stub 0 nssaNumber of areas transit capable is 1External flood list length 0IETF NSF helper support enabledCisco NSF helper support enabledPrefix-suppression is enabled...Excluding IP Prefixes on a Per-Interface Basis
This section provides the steps necessary to prevent OSPF routers from advertising all IP prefixes that are associated with a specific interface. When you enter the ip ospf prefix suppression command in interface configuration mode, it takes precedence over the prefix-suppression command that is entered in router configuration mode.
SUMMARY STEPS
1.
2.
3.
4.
5.
6.
DETAILED STEPS
Examples
In the following example, the output from the show ip ospf interface command verifies that prefix suppression has been enabled for Ethernet interface 0/0.
Router# show ip ospf interfaceEthernet0/0 is up, line protocol is upInternet Address 192.168.130.2/24, Area 2Process ID 1, Router ID 10.0.0.6, Network Type BROADCAST, Cost: 10Prefix-suppression is enabled...Troubleshooting IP Prefix Suppression
This section describes how to troubleshoot IP prefix suppression by using the debug ip ospf lsa-generation command.
SUMMARY STEPS
1.
2.
3.
4.
5.
6.
DETAILED STEPS
Examples
The following sample output from the debug ip ospf lsa-generation command verifies that for the Ethernet interface 0/0, IP prefixes from the connected network 192.168.131.0 are excluded.
Router# debug ip ospf lsa-generationOSPF summary lsa generation debugging is onRouter# debug condition interface e0/0Condition 1 setRouter# show debuggingIP routing:OSPF summary lsa generation debugging is onCondition 1: interface Et0/0 (1 flags triggered)Flags: Et0/0Router# show logging*Jun 5 21:54:47.295: OSPF: Suppressing 192.168.131.0/24 on Ethernet1/0 from router LSA*Jun 5 21:54:52.355: OSPF: Suppressing 192.168.131.0/24 on Ethernet1/0 from router LSA...Configuration Examples for the OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements
This section contains the following examples:
•
•
Excluding IP Prefixes from LSA Advertisements for an OSPF Process: Example
The following example configures IP prefix suppression for OSPF routing process 23.
router ospf 23prefix-suppressionendWhen the show ip ospf command is entered, the displayed output verifies that IP prefix suppression has been enabled for OSPF process 23.
Router# show ip ospfouting Process "ospf 23" with ID 10.0.0.6Start time: 00:00:04.912, Time elapsed: 00:02:35.184Supports only single TOS(TOS0) routesSupports opaque LSASupports Link-local Signaling (LLS)Supports area transit capabilityIt is an area border routerRouter is not originating router-LSAs with maximum metricInitial SPF schedule delay 5000 msecsMinimum hold time between two consecutive SPFs 10000 msecsMaximum wait time between two consecutive SPFs 10000 msecsIncremental-SPF disabledMinimum LSA interval 5 secsMinimum LSA arrival 1000 msecsLSA group pacing timer 240 secsInterface flood pacing timer 33 msecsRetransmission pacing timer 66 msecsNumber of external LSA 2. Checksum Sum 0x0132C8Number of opaque AS LSA 0. Checksum Sum 0x000000Number of DCbitless external and opaque AS LSA 0Number of DoNotAge external and opaque AS LSA 0Number of areas in this router is 3. 3 normal 0 stub 0 nssaNumber of areas transit capable is 1External flood list length 0IETF NSF helper support enabledCisco NSF helper support enabledPrefix-suppression is enabled...Excluding IP Prefixes from LSA Advertisements for a Specified Interface: Example
The following example configures the suppression of all IP prefixes that are associated with Ethernet interface 0/0:
interface Ethernet 0/0ip ospf prefix-suppressionendWhen the show ip ospf interface command is entered, the displayed output verifies that IP prefix suppression is enabled for Ethernet interface 0/0.
Router# show ip ospf interfaceEthernet0/0 is up, line protocol is upInternet Address 192.168.130.2/24, Area 2Process ID 1, Router ID 10.0.0.6, Network Type BROADCAST, Cost: 10Prefix-suppression is enabled...Additional References
The following sections provide references related to the OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements feature.
Related Documents
Standards
MIBs
RFCs
Technical Assistance
Command Reference
This section documents only commands that are new or modified.
ip ospf prefix-suppression
To prevent OSPF from advertising all IP prefixes that belong to a specific interface, except for prefixes that are associated with secondary IP addresses, use the ip ospf prefix-suppression command in interface configuration mode. To remove the per-interface configuration from the interface and allow the interface to inherit the IP prefix suppression setting from the router configuration, use the no form of this command.
ip ospf prefix-suppression [disable]
no ip ospf prefix-suppression
Syntax Description
disable
(Optional) Specifies that OSPF will advertise the interface IP prefix, regardless of the router mode configuration for IP prefix suppression.
Command Default
All IP prefixes that are associated with the interface are advertised.
Command Modes
Interface configuration (config-if)
Command History
Usage Guidelines
You can suppress IP prefixes on a per-interface basis for all interface types by entering the ip ospf prefix-suppression command in interface configuration mode.
When the ip ospf prefix-suppression command is configured, it takes precedence over the prefix-suppression router configuration command. If the prefix-suppression router configuration command has been entered, the interfaces for the specified OSPF process will inherit the prefix suppression setting from the router configuration command.
When you enter the ip ospf prefix-suppression command, prefix generation for any interface type, including loopbacks and passive interfaces, are suppressed. Only prefixes associated with secondary IP addressees remain unaffected.
Examples
The following example suppresses all IP prefixes, except for secondary IP addresses, for Ethernet interface 1/1:
interface ethernet 1/1ip ospf prefix-suppressionRelated Commands
prefix-suppression
To prevent OSPF from advertising all IP prefixes except prefixes that are associated with loopbacks, secondary IP addresses, and passive interfaces for a specific OSPF process, use the prefix-suppression command in router configuration mode. To advertise all IP prefixes, use the no form of this command.
prefix-suppression
no prefix-suppression
Syntax Description
This command has no arguments or keywords.
Command Default
All IP prefixes are advertised.
Command Modes
Router configuration (config-router)
Command History
Usage Guidelines
You can globally suppress all IP prefixes (except prefixes that are associated with loopbacks, secondary IP addresses, and passive interfaces) for an entire OSPF process by using the prefix-suppression command in router configuration mode. You can also suppress IP prefixes on a per-interface basis by using the ip ospf prefix-suppression command in interface configuration mode. When the ip ospf prefix-suppression command is configured, it takes precedence over the prefix-suppression router configuration command.
Examples
The following example globally suppresses all IP prefixes except prefixes that are associated with loopbacks, secondary IP addresses, and passive interfaces for OSPF process 4:
router ospf 4prefix-suppressionRelated Commands
Feature Information for the OSPF Mechanism to Exclude Connected IP Prefixes from LSA Advertisements
Table 1 lists the release history for this feature.
Not all commands may be available in your Cisco IOS software release. For release information about a specific command, see the command reference documentation.
Use Cisco Feature Navigator to find information about platform support and software image support. Cisco Feature Navigator enables you to determine which Cisco IOS and Catalyst OS software images support a specific software release, feature set, or platform. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.
Note
Glossary
network LSA—The link-state advertisement created by the designated router (DR) or pseudonode that represents a group of routers on the same interface. The network LSA advertises summary information to represent the group of routers on the network.
router LSA—The link-state advertisement that is generated by a router. The router LSA advertises routing information (connected routes) for the router.
Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, command display output, and figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.
© 2007 Cisco Systems, Inc. All rights reserved.
