CCNA Certification: Open Shortest Path First – OSPF

Today we will talk about the OSPF dynamic routing protocol, as required for Cisco’s CCNA Exam. You should learn this protocol carefully, not only because Cisco requires a good knowledge for the CCNA certification, but you will find it in many network deployments today. From all Interior Gateway Protocols (IGPs), OSPF is probably the most common one.

OSPF (Open Shortest Path First) is probably the most widely-used Interior Gateway Protocol (IGP). The reason it became so popular is because it’s a link-state routing protocol. Link-state routing protocols are able to create the topology of your network by gathering information from all the other routers. By having the map of your network, the link-state protocol is able to select the best path to any destination in your network. Unlike distance vector routing protocols, link-state routing protocols are not sending periodic updates(this is an important CCNA concept to know), instead, after the network has converged, they advertise updates only when the topology changes. Having this behavior, OSPF is able to recalculate the routes very fast in case the topology changes or a link is failing.

As defined by RFC 2328, OSPF is using an arbitrary value called cost for its metric. Cisco decided to use bandwidth as the OSPF cost metric.

OSPF’s advantages are its fast convergence and its scalability, which allows for large network scenarios. Currently, OSPFv2 is used for IPv4 networks and OSPFv3 for IPv6 networks. OSPF also supports Variable-Length Subnet Masking (VLSM) and Classless Inter-Domain-Routing (CIDR).

OSPF uses areas to manage the network. Areas are 32-bit numbers. Those numbers can either be in decimal form or in octet-based dot-decimal notation, just like IPv4 addresses. Area 0 (or 0.0.0.0) represents the backbone of an OSPF network.

The OSPF package header is included in every OSPF packet. In the IP packet header, the protocol field is set to 89 and the destination address is set to the ALLSPFRouters address, 224.0.0.5.

The OSPF protocol is sending the following packet types:

1.Hello – used to discover the neighbors, establish the parameters on which the routers must agree, build adjacencies, elect Designated Router (DR) and Backup Designed Router (BDR).

2.DBD – Database Description is used to check if the database is synchronized between the sending and the receiving router.

3.LSR – Link-State Request is used to request specific link-state records.

4.LSU – Link-State Update packets are used to reply to LSRs and also to announce new informations or changes to the current topology.

5.LSAack – Link-State Acknowledgement is send by the receiving router to confirm the receipt of an LSU.

OSPF uses the Dijkstra’s shortest path first alhorithm (SPF) to create the SPF tree.

The default Administrative Distance is 110, which makes OSPF preferred over other IGPs, like IS-IS and RIP.

To protect your network routers from receiving unsolicited and bogus OSPF information, the protocol is able to encrypt and authenticate the routing information. This way, the routers will receive information only from routers configured with the same authentication information.

To enable OSPF on a router, you must enter router ospf process-id in the global configuration mode, where process-id is a number between 1 and 65535. This number does not have to be the same on all routers and can be randomly selected. Its influence takes place only locally and it’s not advertised on the network.

To announce a route through OSPF, the network network-address wildcard-mask area area-id command is used in router configuration mode. For example, to announce the network 192.168.0.0/24 you must enter network 192.168.0.0 0.0.0.255 area 0. The wildcard mask is calculated by subtracting the netmask from  255.255.255.255. For example, the wildcard mask for 255.255.255.224 is 0.0.0.31.

Router(config)#router ospf 1                                                    

Router(config-router)#network 192.168.0.0 0.0.0.255 area 0                          

Router(config-router)#network 10.0.0.0 0.0.0.31 area 0                          

OSPF has 3 methods to determine the router-id in the following order: 1) use the IP address configured with the router-id command; 2) use the highest IP address of any Loopback interface; 3) use the highest IP of any other interface. If you didn’t configure the router ID, you can find out which one is it with the show ip protocols command. However, if the Router ID is automatically assigned and you decide to change it with the router-id command, you must use the clear ip ospf process command. Please note that, if you decide to use a Loopback or a physical interface, the above command may not work and you may have to reload your router.

Router(config)#router ospf 1                                                       

Router(config-router)#router-id 192.168.0.1                                         

Router(config-router)#ctrl-Z                                                     

Router#clear ip ospf process                                                     

The metric of OSPF can be easily determined with the following formula: 10^8 / speed of the interface in bps. For example, the metric of an Ethernet interface is 10^8 / 10,000,000 bps = 10. The metric of T1 (1.544Mbps) is 10^8 / 1,544,000 bps = 64. Considering this formula, any Fast Ethernet or faster interface has a metric of 1. Also, please note that the value of the metric in OSPF from the router to a network is the accumulated value of all metrics until it reaches that network. For example, if R1 needs to get to R3 through R2, and the metric between R1 and R2 is 1 and the metric from R2 and R3 is 64, the total value of the metric is 65.

However, if you are using for example a serial interface, which is able to support a T1 link but you have only a 128kbps link, you must use the bandwidth or the ip ospf cost  interface command to set the appropriate value. Without it, OSPF may not be able to calculate the real cost and you may get an undesirable routing behavior.

Router(config)#interface serial 0/0/0                                             

Router(config-if)#bandwidth 128                                                 

Router(config)#interface serial 0/0/0                                           

Router(config-if)#ip ospf cost 781                                               

Of course, today’s networks have even higher speed links, and you may have for example 10GigE interfaces along with 1GigE and Fast Ethernet. The problem here is that the metric for all these interfaces will be 1 which can lead to an unexpected behavior. To solve this problem, you can adjust the reference-bandwidth (the value is in Mbits per second):

Router(config)#router ospf 1                                                    

Router(config-router)#auto-cost reference-bandwidth 10000        

This will conclude part 1 of our Cisco CCNA 640-802 Certification topic of OSPF.  Please come back next week to see the conclusion of this CCNA topic where we will discuss the challenges of PSPF in a mult-access environment.             

When you begin to configure your VTP enabled network you must first make sure that all switches you are going to configure are set to their default settings. A good advice is to configure at least two VTP servers on your network in case one VTP server fails. Also, all switches in a VTP domain must use the same version. Not configuring the VTP version correctly will result in no VTP communication between your switches.

On a VTP server you must make sure you configure the following key components:

·         VTP domain

·         VTP version

·         VLANs and trunk ports

On the VTP clients you must configure:

·         VTP client mode

·         VTP version

·         Trunks

·         Access ports 

First of all, we must make sure that the VTP server’s configuration is the default one.

S1#show vtp status

VTP Version                     : running VTP1 (VTP2 capable)

Configuration Revision          : 0

Maximum VLANs supported locally : 1005

Number of existing VLANs        : 7

VTP Operating Mode              : Server

VTP Domain Name                 :

VTP Pruning Mode                : Disabled

VTP V2 Mode                     : Disabled

VTP Traps Generation            : Disabled

MD5 digest                      : 0xFB 0xC2 0×38 0xC1 0×0D 0×1D 0×14 0×10

Configuration last modified by 0.0.0.0 at 0-0-0 00:00:00

Looks good. Now, let’s configure the VTP domain name and check again the output of show vtp status.

S1#configure terminal

S1(config)#vtp mode server

S1(config)#vtp domain cisco

Changing VTP domain name from NULL to cisco

S1(config)#vtp version 1

VTP mode already in V1

S1(config)#exit

S1#show vtp status

VTP Version                     : running VTP1 (VTP2 capable)

Configuration Revision          : 0

Maximum VLANs supported locally : 1005

Number of existing VLANs        : 7

VTP Operating Mode              : Server

VTP Domain Name                 : cisco

Good. We have configured a switch to act as a version 1 VTP server for the VTP Domain cisco. Next, you must create the VLANs and trunks. You can find more details about these operations in our VLAN and Trunking courses from the CCNA Certification series.

Please note that, every added VLAN increases the revision number with 1. The name of a VLAN also increases the revision number with 1. For example, if you have 3 VLANs, you will have 3 VLANs + 3 Names = Revision 6.

Next, let’s configure the VTP client switches. The configuration is identical on both switches.

The first step is to check if the configuration is the default one with show vtp status, as you did for the VTP server too. Now let’s configure the switch to act as a client.

S2#configure terminal

S2(config)#vtp mode client

Setting device to VTP CLIENT mode.

S2(config)#exit

S2#show vtp status

VTP Version                     : running VTP1 (VTP2 capable)

Configuration Revision          : 0

Maximum VLANs supported locally : 1005

Number of existing VLANs        : 7

VTP Operating Mode              : Client

The next step is to connect the Client switch to the server. After the switches are connected, check the show vtp status output again and show vtp counters to make sure those switches are exchanging information.

S2#show vtp status

VTP Version                     : running VTP1 (VTP2 capable)

Configuration Revision          : 6

Maximum VLANs supported locally : 1005

Number of existing VLANs        : 10

VTP Operating Mode              : Client

VTP Domain Name                 : cisco

S2#show vtp counters

VTP statistics:

Summary advertisements received    : 1

Subset advertisements received     : 1

Request advertisements received    : 0

Summary advertisements transmitted : 1

Subset advertisements transmitted  : 1

We see that the switch has successfully joined the cisco VTP domain,  got the configuration revision 6, and now has 10 configured VLANs.

The next step is to configure the access ports, for example:

S2(config)#interface Gi0/18

S2(config-if)#switchport access vlan 20

In VTP enabled networks you can encounter different errors. To troubleshoot them you must be sure you the output the the show commands. Common issues you may encounter can be:

·         The VTP version is not configured correctly

·         If you use a VTP password, the password mismatches on the other switches

·         You didn’t correctly configured the VTP mode

·         You don’t have a VTP server in your network.

·         The VTP domain is not configured correctly

·         Before you put the switch on the network, you didn’t reset the revision number

This concludes our lesson. We are proud to provide real life examples along with our Cisco CCNA certification courses. Not only you will take the certification exam, but you will also have a valuable hands-on experience.