OSPF stuck in exchange state after failover

OSPF stuck in exchange state after failover

6953
Created On 02/02/22 11:43 AM - Last Modified 09/12/23 21:13 PM


Symptom


The OSPF status of one of the neighbourship (or sometimes both) is/are stuck in EXTSART state after failover is triggered.
 

Environment


  • Palo Alto Firewall connected to Cisco Nexus.
  • Supported PAN-OS.
  • OSPF neighborship with Cisco Nexus using vPC (Virtual Port Channel).

Cause


Cisco vPC by default does not allow L3 routing protocol information.

Resolution


Enable the L3 routing protocol on Cisco using the command layer3 peer-router. Refer to the necessary Cisco documentation.

Additional Information


Cisco references:
Other Possible scenario due to MTU:

Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000oN70CAE&lang=en_US%E2%80%A9&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail