OSPF Configuration between Juniper & Huawei Firewalls

Created: Aug 17, 2019 17:43:46Latest reply: Aug 20, 2019 00:26:46 112 6 0 0
  Rewarded Hi-coins: 0 (problem resolved)

I have Juniper SRX220 & Huawei USG6000, I want them to be on same OSPF Area & share OSPF informatuin; they both are sharing OSPF packets but there is some mismatch between them, at Huawei, Logs says Type=2 Error: Can any one help?

  • x
  • convention:

Featured Answers
chenhui
Admin Created Aug 19, 2019 06:55:26 Helpful(0) Helpful(0)

Posted by SurButt at 2019-08-19 06:37 Dear Sir;Here are the logs please: 2019/08/19 10:14:14 Alarm Critical OID 1.3.6.1.2.1.14.16.2. ...
hi,
from the logs, the OSPF configuration conflicts with the local configuration, it caused by the mismatch configuration.
please check the area ID and stub/NSSA configuration.
  • x
  • convention:

All Answers
wissal
wissal MVE Created Aug 17, 2019 17:58:41 Helpful(0) Helpful(0)

Hi,

Please find below the solution for your issue

OSPF interaction between Huawei AR router and Juniper Firewall

Related packets are attached.

I have a Juniper SSG20 firewall by hand and it supports virtual router function, which means that I can configure OSPF on it to interact with Huawei AR router in eNSP.

OSPF interaction between Huawei AR router and Juniper Firewall-1301461-1

After configuration, I can see they have OSPF route communication.

OSPF interaction between Huawei AR router and Juniper Firewall-1301461-2

We can see Juniper firewall get all routes from Router B,D and F.

OSPF interaction between Huawei AR router and Juniper Firewall-1301461-3

From RouterF, we can see Juniper firewall 192.168.10.1 becomes neighbor of RouterF.


For more details frfer to the link :

https://forum.huawei.com/enterprise/en/ospf-interaction-between-huawei-ar-router-and-juniper-firewall/thread/288483-863



Thanks

  • x
  • convention:

Telecommunications%20Engineer%2C%20currently%20senior%20project%20manager%20of%20the%20radio%20access%20network%20and%20partner%20of%20Huawei%20de%20Tunisia.
chenhui
chenhui Admin Created Aug 19, 2019 01:59:04 Helpful(0) Helpful(0)

@SurButt hello,
will you please upload the corresponding logs?
  • x
  • convention:

SurButt
SurButt Created Aug 19, 2019 06:37:18 Helpful(0) Helpful(0)

Posted by chenhui at 2019-08-19 01:59 @SurButt hello, will you please upload the corresponding logs?
Dear Sir;
Here are the logs please:

2019/08/19 10:14:14 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=10.XX.XX.26, ConfigErrorType=10, PacketType=1, InstanceName=) public
2019/08/19 10:14:14 Alarm Error OID 1.3.6.1.2.1.14.16.2.5: A packet is received on the virtual interface from a router whose configuration conflicts with the local configuration. (VirtIfAreaId=0.0.0.99, VirtIfNeighbor=10.253.50.65, ProcessId=1, RouterId=172.XX.XX.47, ConfigErrorType=4, PacketType=1, InstanceName=) public
2019/08/19 10:14:12 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=10.XX.XX.2, ConfigErrorType=10, PacketType=1, InstanceName=) public
2019/08/19 10:14:10 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=172.XX.XX.3, ConfigErrorType=2, PacketType=1, InstanceName=) public
2019/08/19 10:14:08 Running Debug Last message repeated 1 times.(InfoID=4248047649, ModuleName=HTTPD, InfoAlias=COMM_SUCC) public
2019/08/19 10:14:08 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=10.XX.XX.61, ConfigErrorType=10, PacketType=1, InstanceName=) public
2019/08/19 10:14:06 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=10.XX.XX.26, ConfigErrorType=10, PacketType=1, InstanceName=) public
2019/08/19 10:14:05 Alarm Error OID 1.3.6.1.2.1.14.16.2.5: A packet is received on the virtual interface from a router whose configuration conflicts with the local configuration. (VirtIfAreaId=0.0.0.99, VirtIfNeighbor=10.253.50.65, ProcessId=1, RouterId=172.XX.XX.47, ConfigErrorType=4, PacketType=1, InstanceName=) public
2019/08/19 10:14:05 Running Debug Last message repeated 1 times.(InfoID=4248047649, ModuleName=HTTPD, InfoAlias=COMM_SUCC) public
2019/08/19 10:14:04 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=10.XX.XX.34, ConfigErrorType=10, PacketType=1, InstanceName=) public
2019/08/19 10:14:02 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=172.XX.XX.3, ConfigErrorType=2, PacketType=4, InstanceName=) public
2019/08/19 10:14:01 Running Debug Last message repeated 1 times.(InfoID=4248047649, ModuleName=HTTPD, InfoAlias=COMM_SUCC) public
2019/08/19 10:14:00 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=172.XX.XX.3, ConfigErrorType=2, PacketType=1, InstanceName=) public
2019/08/19 10:13:58 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=10.XX.XX.4, ConfigErrorType=10, PacketType=1, InstanceName=) public
2019/08/19 10:13:56 Running Debug Last message repeated 1 times.(InfoID=4248047649, ModuleName=HTTPD, InfoAlias=COMM_SUCC) public
2019/08/19 10:13:56 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=10.XX.XX.93, ConfigErrorType=10, PacketType=1, InstanceName=) public
2019/08/19 10:13:56 Alarm Error OID 1.3.6.1.2.1.14.16.2.5: A packet is received on the virtual interface from a router whose configuration conflicts with the local configuration. (VirtIfAreaId=0.0.0.99, VirtIfNeighbor=10.253.50.65, ProcessId=1, RouterId=172.XX.XX.47, ConfigErrorType=4, PacketType=1, InstanceName=) public
2019/08/19 10:13:54 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=10.XX.XX.27, ConfigErrorType=10, PacketType=1, InstanceName=) public
2019/08/19 10:13:52 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=10.XX.XX.21, ConfigErrorType=10, PacketType=1, InstanceName=) public
2019/08/19 10:13:50 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=172.XX.XX.3, ConfigErrorType=2, PacketType=1, InstanceName=) public
2019/08/19 10:13:49 Alarm Critical OID 1.3.6.1.2.1.14.16.2.4: A packet is received on the non-virtual interface from a router whose configuration conflicts with the local configuration. (IfIpAddress=10.XX.XX.47, AddressLessIf=0, ProcessId=1, RouterId=172.XX.XX.47, PacketSrc=172.XX.XX.1, ConfigErrorType=2, PacketType=4, InstanceName=) public
  • x
  • convention:

Expert%20on%20Juniper%20Networks%20%26%20Security%20but%20a%20student%20of%20Cyber%20Operations%20%26%20In%20between%20new%20to%20the%20WORLD%20of%20Huawei%20Tech.
chenhui
chenhui Admin Created Aug 19, 2019 06:55:26 Helpful(0) Helpful(0)

Posted by SurButt at 2019-08-19 06:37 Dear Sir;Here are the logs please: 2019/08/19 10:14:14 Alarm Critical OID 1.3.6.1.2.1.14.16.2. ...
hi,
from the logs, the OSPF configuration conflicts with the local configuration, it caused by the mismatch configuration.
please check the area ID and stub/NSSA configuration.
  • x
  • convention:

SurButt
SurButt Created Aug 19, 2019 09:27:17 Helpful(0) Helpful(0)

Posted by chenhui at 2019-08-19 06:55 hi,from the logs, the OSPF configuration conflicts with the local configuration, it caused by the ...
And It worked like a Charm, THANK YOU!
  • x
  • convention:

Expert%20on%20Juniper%20Networks%20%26%20Security%20but%20a%20student%20of%20Cyber%20Operations%20%26%20In%20between%20new%20to%20the%20WORLD%20of%20Huawei%20Tech.
chenhui
chenhui Admin Created Aug 20, 2019 00:26:46 Helpful(1) Helpful(1)

Posted by SurButt at 2019-08-19 09:27 And It worked like a Charm, THANK YOU!
my pleasure :D
  • x
  • convention:

Reply

Reply
You need to log in to reply to the post Login | Register

Notice Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."
If the attachment button is not available, update the Adobe Flash Player to the latest version!
Login and enjoy all the member benefits

Login and enjoy all the member benefits

Login