Network - Flapping


[IP SLA](/ip-sla-parameters) can be used to perform reliable static routing.  However, there is the possibility of such a scenario causing route [flapping](/network-flapping).  Route flapping between primary and secondary routes, is a common challenge in network configurations. Here's an overview of the situation and a potential solution:
### Problem Overview
1. **IP SLA Operation**: You're using IP SLA to monitor connectivity to a specific server (i.e. 5.5.5.5) via [ICMP](/icmp)  [Echo](/ping).
2. **Primary Route Removal**: If the IP SLA operation fails (indicating connectivity issues), the primary route to the internet is removed from the [routing table](/routing-table).
3. **Backup Route Activation**: A backup [default route](/ip-routing-table-default-route) is then installed to restore connectivity.
4. **Route Flapping**: Once the backup route is in place, the IP SLA operation may detect that connectivity to 5.5.5.5 is restored, causing the primary route to be reinstalled. This can lead to a cycle of the primary route being installed and uninstalled, known as "route flapping".

### Potential Solution: Introducing Delay
To mitigate this issue, you can introduce a delay in the IP SLA configuration to prevent immediate reinstatement of the primary route. This can be done by configuring a delay for the down and up states of the track object:

1. **Delay for Down State**: Introduce a delay for the track object to go down after the IP SLA operation fails. This ensures that a temporary loss of connectivity doesn't immediately trigger a route switch.

2. **Delay for Up State**: Introduce a delay for the track object to come back up after the IP SLA operation is successful again. This delay helps to ensure that the connectivity is stable before switching back to the primary route.
### Additional Considerations
Other solutions include:
- **Multiple Targets for IP SLA**: Instead of relying on a single destination for IP SLA, consider using multiple targets. This approach reduces the likelihood that transient issues with a single destination will cause route flapping.
- **Tuning Timers**: Adjust the delay timers and IP SLA operation frequency based on the specific requirements and behavior of your network.
- **Logging and Monitoring**: Ensure that you have proper logging and monitoring in place to track the behavior of your IP SLA operations and route changes. This data can be invaluable for adjusting your configuration and understanding the network's behavior.
- **Change the Monitoring Target**: Instead of monitoring a single [IP](/ipv4) like 5.5.5.5, you might consider monitoring a device or service that is indicative of overall Internet health or critical services. This might prevent the [routing loop](/loops-in-layers-2-and-3) if the single IP becomes unreachable for reasons not indicative of a primary route failure.
- **[Policy-Based Routing (PBR)](/pbr-policy-based-routing)**: Use PBR to define specific conditions for traffic routing that are more complex than simple reachability.

Implementing these strategies should help in creating a more stable IP SLA configuration and avoid the route flapping issue you're concerned about.


Links:

https://forum.networklessons.com/t/reliable-static-routing-with-ip-sla/1011/68?u=lagapidis

https://networklessons.com/cisco/ccie-routing-switching/reliable-static-routing-with-ip-sla



IP SLA - Route Flapping Problem

Home lab computer requirements

Hot Standby Router Protocol (HSRP)

How to practice labbing - best practices

How to prepare for Cisco DNA

IANA

ICANN

ICMP - Mitigating Vulnerabilities

ICMP - Vulnerabilities

ICMP - response to a ping that is blocked by an ACL

ICMP codes and types

ICMP

IEEE

IETF

IGMP - Snooping Querier Election

IGMP - Snooping Querier

IGMP - access group

IGMP - fast leave

IGMP - filtering using ACLs

IGMP - ip igmp snooping querier command

IGMP - membership report

IGMP - using VLAN access maps to filter multicast traffic

IGMP Snooping internal interface

IGMP default IOS configurations

IGMP last member query interval

IGMP membership query max response time

IGMP membership reports destination

IGMP report suppression

IGMP snooping prevents report suppression

IGMP snooping source IP address for messages

IGMP snooping

IGMP version 1 how hosts stop receiving multicast traffic

IGMP

IGMPv2 - leave group message mechanism

IGRP

IOS - Configuration Archive and Rollback

IOS - Right To Use (RTU) License

IOS - ip http server

IOS - licensing

IOS - show license command

IOS - using ftp or tftp source-interface command

IOS configuration register

IOS install mode vs bundle mode

IOS key chain feature

IP - When is the TTL decremented in a router

IP Address Management (IPAM) Tools

IP Addressing on a Router

IP Fragmentation - effects on network traffic

IP Fragmentation Attack

IP Routing table - process by which entries are matched

IP SLA Parameters

IP SLA tracking syntax

IP addressing on a Switch

IP routing table - candidate default route

IP routing table - default route

IP routing table - static route

IPSec - Authentication Header (AH)

IPSec - ESP vs AH

IPSec - Encapsulating Security Payload (ESP)

IPSec - Key Exchange Data

IPSec - NAT, AH, and ESP

IPSec - crypto map multiple peers

IPSec ESP Wireshark decrypt payload

IPSec NAT Transparency

IPSec how it works with NAT-T

IPSec profile operation with more than one crypto isakmp policy

IPSec

IPsec - does it support multicast

IPv4 - Internal Host Loopback Address Range

IPv4 - ToS Byte definition

IPv4 - classful addressing

IPv4 - classless addressing

IPv4 - header protocol field

IPv4 - no subnet mask information in the IP header

IPv4 - subnet mask

IPv4 Link-local address range

IPv4 Private IP address ranges

IPv4 Subnetting invalid entry causing network address of zero

IPv4 header length field

IPv4 network and broadcast addresses

IPv4 point to point addresses

IPv4

IPv6 - ACLs, RAs, and RSes

IPv6 - DHCPv6

IPv6 - IPv4-mapped IPv6 address

IPv6 - NDP Neighbor Discovery Process

IPv6 - NDP preferred and valid lifetimes

IPv6 - Network and Interface Identifiers

IPv6 - RA suppression command

IPv6 - SLAAC

IPv6 - Site Local addresses

IPv6 - Solicited Node Multicast Address

IPv6 - Unique Local addresses

IPv6 - Valid and Preferred Addresses

IPv6 - destination guard

IPv6 - ipv6 nd prefix command

IPv6 - loopback address

IPv6 - prefix length

IPv6 - understanding how to enable IPv6 functionality and routing on an IOS device

IPv6 EIGRP static neighbors

IP SLA - Route Flapping Problem

Problem Overview

Potential Solution: Introducing Delay

Additional Considerations

Links to this page: