General Notes
passive-interface defaultis recommended, due to thenetworkstatement being classful- don’t forget to consider switch-based solutions like vlan access-maps and port access-lists (blocking udp/520) to prevent updates from propagating between routers if the task restricts your configuration options on the routers themselves.
- CCIE Links page updated with RIPv2 links
Timers
- default basic timers are 30/120/120/240 (update, invalid, hold down, flush)
- periodic updates can be delayed after a triggered update with the sleep parameter at the end of the
timers basicrouter command. - the “hold down” timer is Cisco-proprietary. Set it to 0 if you need to retain full compatibility with RFC 2453.
Distribute Lists
distribute-listuses a separateip prefix-listfor defining the gateway and the routes
Default Originate
- the
route-mapoption todefault-information originatecauses the 0/0 route to only be injected into RIP if the route-map is satisfied (e.g. if a route exists)
Multicast / Broadcast / Unicast
- RIPv2 defaults to sending updates via multicast (224.0.0.9)
- The
passive-interfaceandneighborrouter commands change it to unicast - The
ip rip v2-broadcastinterface command changes it to broadcast - A very tricky way to force unicast updates without using the neighbor command:
ip nat outside udp X.X.X.X 520 224.0.0.9 520
int se0/0/0
ip nat outside
This converts the inbound multicast updates to unicast, which will create a NAT table entry and translate all outbound RIP updates to unicast as well (NAT is bidirectional)
Authentication
- IOS 12.4 supposedly requires a valid
send-lifetimeconfigured for a key before it will work. - RIP will always use the first valid key when sending updates out an interface.
Route Filtering
- The three methods to kill a route:
distribute-listwith an ACLoffset-listpushing the metric beyond 16distancecommand setting the AD to 255
0 Responses
Stay in touch with the conversation, subscribe to the RSS feed for comments on this post.