7 :abbr:`ISIS (Intermediate System to Intermediate System)` is a routing protocol
8 which is described in :t:`ISO10589`, :rfc:`1195`, :rfc:`5308`. ISIS is an
9 :abbr:`IGP (Interior Gateway Protocol)`. Compared with :abbr:`RIP`,
10 :abbr:`ISIS` can provide scalable network support and faster convergence times
11 like :abbr:`OSPF`. ISIS is widely used in large networks such as :abbr:`ISP
12 (Internet Service Provider)` and carrier backbone networks.
14 .. _configuring-isisd:
19 There are no *isisd* specific options. Common options can be specified
20 (:ref:`common-invocation-options`) to *isisd*. *isisd* needs to acquire
21 interface information from *zebra* in order to function. Therefore *zebra* must
22 be running before invoking *isisd*. Also, if *zebra* is restarted then *isisd*
25 Like other daemons, *isisd* configuration is done in :abbr:`ISIS` specific
26 configuration file :file:`isisd.conf`.
33 To start the ISIS process you have to specify the ISIS router. As of this
34 writing, *isisd* does not support multiple ISIS processes.
36 .. clicmd:: router isis WORD [vrf NAME]
38 Enable or disable the ISIS process by specifying the ISIS domain with
39 'WORD'. *isisd* does not yet support multiple ISIS processes but you must
40 specify the name of ISIS process. The ISIS process name 'WORD' is then used
41 for interface (see command :clicmd:`ip router isis WORD`).
43 .. clicmd:: net XX.XXXX. ... .XXX.XX
45 Set/Unset network entity title (NET) provided in ISO format.
47 .. clicmd:: hostname dynamic
49 Enable support for dynamic hostname.
51 .. clicmd:: area-password [clear | md5] <password>
53 .. clicmd:: domain-password [clear | md5] <password>
55 Configure the authentication password for an area, respectively a domain, as
56 clear text or md5 one.
58 .. clicmd:: attached-bit [receive ignore | send]
60 Set attached bit for inter-area traffic:
63 If LSP received with attached bit set, create default route to neighbor
65 If L1|L2 router, set attached bit in LSP sent to L1 router
67 .. clicmd:: log-adjacency-changes
69 Log changes in adjacency state.
71 .. clicmd:: metric-style [narrow | transition | wide]
73 Set old-style (ISO 10589) or new-style packet formats:
76 Use old style of TLVs with narrow metric
78 Send and accept both styles of TLVs during transition
80 Use new style of TLVs to carry wider metric. FRR uses this as a default value
82 .. clicmd:: set-overload-bit
84 Set overload bit to avoid any transit traffic.
86 .. clicmd:: set-overload-bit on-startup (0-86400)
88 Set overload bit on startup for the specified duration, in seconds. Reference: :rfc:`3277`
90 .. clicmd:: purge-originator
92 Enable or disable :rfc:`6232` purge originator identification.
94 .. clicmd:: lsp-mtu (128-4352)
96 Configure the maximum size of generated LSPs, in bytes.
104 .. clicmd:: lsp-gen-interval [level-1 | level-2] (1-120)
106 Set minimum interval in seconds between regenerating same LSP,
107 globally, for an area (level-1) or a domain (level-2).
109 .. clicmd:: lsp-refresh-interval [level-1 | level-2] (1-65235)
111 Set LSP refresh interval in seconds, globally, for an area (level-1) or a
114 .. clicmd:: max-lsp-lifetime [level-1 | level-2] (360-65535)
116 Set LSP maximum LSP lifetime in seconds, globally, for an area (level-1) or
119 .. clicmd:: spf-interval [level-1 | level-2] (1-120)
121 Set minimum interval between consecutive SPF calculations in seconds.
123 .. _isis-fast-reroute:
128 Unless stated otherwise, commands in this section apply to all LFA
129 flavors (local LFA, Remote LFA and TI-LFA).
131 .. clicmd:: spf prefix-priority [critical | high | medium] WORD
133 Assign a priority to the prefixes that match the specified access-list.
135 By default loopback prefixes have medium priority and non-loopback prefixes
138 .. clicmd:: fast-reroute priority-limit [critical | high | medium] [level-1 | level-2]
140 Limit LFA backup computation up to the specified prefix priority.
142 .. clicmd:: fast-reroute lfa tiebreaker [downstream | lowest-backup-metric | node-protecting] index (1-255) [level-1 | level-2]
144 Configure a tie-breaker for multiple local LFA backups. Lower indexes are
147 .. clicmd:: fast-reroute load-sharing disable [level-1 | level-2]
149 Disable load sharing across multiple LFA backups.
151 .. clicmd:: fast-reroute remote-lfa prefix-list [WORD] [level-1 | level-2]
153 Configure a prefix-list to select eligible PQ nodes for remote LFA
154 backups (valid for all protected interfaces).
161 .. clicmd:: is-type [level-1 | level-1-2 | level-2-only]
163 Define the ISIS router behavior:
166 Act as a station router only
168 Act as both a station router and an area router
170 Act as an area router only
177 .. _ip-router-isis-word:
179 .. clicmd:: <ip|ipv6> router isis WORD
181 Activate ISIS adjacency on this interface. Note that the name of ISIS
182 instance must be the same as the one used to configure the ISIS process (see
183 command :clicmd:`router isis WORD`). To enable IPv4, issue ``ip router isis
184 WORD``; to enable IPv6, issue ``ipv6 router isis WORD``.
186 .. clicmd:: isis circuit-type [level-1 | level-1-2 | level-2]
188 Configure circuit type for interface:
191 Level-1 only adjacencies are formed
193 Level-1-2 adjacencies are formed
195 Level-2 only adjacencies are formed
197 .. clicmd:: isis csnp-interval (1-600) [level-1 | level-2]
199 Set CSNP interval in seconds globally, for an area (level-1) or a domain
202 .. clicmd:: isis hello padding
204 Add padding to IS-IS hello packets.
206 .. clicmd:: isis hello-interval (1-600) [level-1 | level-2]
208 Set Hello interval in seconds globally, for an area (level-1) or a domain
211 .. clicmd:: isis hello-multiplier (2-100) [level-1 | level-2]
213 Set multiplier for Hello holding time globally, for an area (level-1) or a
216 .. clicmd:: isis metric [(0-255) | (0-16777215)] [level-1 | level-2]
218 Set default metric value globally, for an area (level-1) or a domain
219 (level-2). Max value depend if metric support narrow or wide value (see
220 command :clicmd:`metric-style [narrow | transition | wide]`).
222 .. clicmd:: isis network point-to-point
224 Set network type to 'Point-to-Point' (broadcast by default).
226 .. clicmd:: isis passive
228 Configure the passive mode for this interface.
230 .. clicmd:: isis password [clear | md5] <password>
232 Configure the authentication password (clear or encoded text) for the
235 .. clicmd:: isis priority (0-127) [level-1 | level-2]
237 Set priority for Designated Router election, globally, for the area
238 (level-1) or the domain (level-2).
240 .. clicmd:: isis psnp-interval (1-120) [level-1 | level-2]
242 Set PSNP interval in seconds globally, for an area (level-1) or a domain
245 .. clicmd:: isis three-way-handshake
247 Enable or disable :rfc:`5303` Three-Way Handshake for P2P adjacencies.
248 Three-Way Handshake is enabled by default.
250 .. clicmd:: isis fast-reroute lfa [level-1 | level-2]
252 Enable per-prefix local LFA fast reroute link protection.
254 .. clicmd:: isis fast-reroute lfa [level-1 | level-2] exclude interface IFNAME
256 Exclude an interface from the local LFA backup nexthop computation.
258 .. clicmd:: isis fast-reroute remote-lfa tunnel mpls-ldp [level-1 | level-2]
260 Enable per-prefix Remote LFA fast reroute link protection. Note that other
261 routers in the network need to be configured to accept LDP targeted hello
262 messages in order for RLFA to work.
264 .. clicmd:: isis fast-reroute remote-lfa maximum-metric (1-16777215) [level-1 | level-2]
266 Limit Remote LFA PQ node selection within the specified metric.
268 .. clicmd:: isis fast-reroute ti-lfa [level-1|level-2] [node-protection [link-fallback]]
270 Enable per-prefix TI-LFA fast reroute link or node protection.
271 When node protection is used, option link-fallback enables the computation and use of
272 link-protecting LFAs for destinations unprotected by node protection.
274 .. _showing-isis-information:
276 Showing ISIS information
277 ========================
279 .. clicmd:: show isis [vrf <NAME|all>] summary [json]
281 Show summary information about ISIS.
283 .. clicmd:: show isis hostname
285 Show information about ISIS node.
287 .. clicmd:: show isis [vrf <NAME|all>] interface [detail] [IFNAME] [json]
289 Show state and configuration of ISIS specified interface, or all interfaces
290 if no interface is given with or without details.
292 .. clicmd:: show isis [vrf <NAME|all>] neighbor [detail] [SYSTEMID] [json]
294 Show state and information of ISIS specified neighbor, or all neighbors if
295 no system id is given with or without details.
297 .. clicmd:: show isis [vrf <NAME|all>] database [detail] [LSPID] [json]
299 Show the ISIS database globally, for a specific LSP id without or with
302 .. clicmd:: show isis topology [level-1|level-2]
304 Show topology IS-IS paths to Intermediate Systems, globally, in area
305 (level-1) or domain (level-2).
307 .. clicmd:: show isis route [level-1|level-2] [prefix-sid|backup]
309 Show the ISIS routing table, as determined by the most recent SPF
312 .. clicmd:: show isis fast-reroute summary [level-1|level-2]
314 Show information about the number of prefixes having LFA protection,
315 and network-wide LFA coverage.
318 .. _isis-traffic-engineering:
325 IS-IS-TE supports RFC 5305 (base TE), RFC 6119 (IPv6) and RFC 7810 / 8570
326 (Extended Metric) with or without Multi-Topology. All Traffic Engineering
327 information are stored in a database formally named TED. However, best
328 acccuracy is provided without Multi-Topology due to inconsistency of Traffic
329 Engineering Advertisement of 3rd party commercial routers when MT is enabled.
330 At this time, FRR offers partial support for some of the routing protocol
331 extensions that can be used with MPLS-TE. FRR does not currently support a
332 complete RSVP-TE solution.
334 .. clicmd:: mpls-te on
336 Enable Traffic Engineering LSP flooding.
338 .. clicmd:: mpls-te router-address <A.B.C.D>
340 Configure stable IP address for MPLS-TE.
342 .. clicmd:: mpls-te router-address ipv6 <X:X::X:X>
344 Configure stable IPv6 address for MPLS-TE.
346 .. clicmd:: mpls-te export
348 Export Traffic Engineering DataBase to other daemons through the ZAPI
349 Opaque Link State messages.
351 .. clicmd:: show isis mpls-te interface
353 .. clicmd:: show isis mpls-te interface INTERFACE
355 Show MPLS Traffic Engineering parameters for all or specified interface.
357 .. clicmd:: show isis mpls-te router
359 Show Traffic Engineering router parameters.
361 .. clicmd:: show isis [vrf <NAME|all>] mpls-te database [detail|json]
363 .. clicmd:: show isis [vrf <NAME|all>] mpls-te database vertex [WORD] [detail|json]
365 .. clicmd:: show isis [vrf <NAME|all>] mpls-te database edge [A.B.C.D|X:X::X:X] [detail|json]
367 .. clicmd:: show isis [vrf <NAME|all>] mpls-te database subnet [A.B.C.D/M|X:X::X:X/M] [detail|json]
369 Show Traffic Engineering Database
373 :ref:`ospf-traffic-engineering`
381 This is an EXPERIMENTAL support of Segment Routing as per RFC8667
382 for MPLS dataplane. It supports IPv4, IPv6 and ECMP and has been
383 tested against Cisco & Juniper routers.
386 - No support for level redistribution (L1 to L2 or L2 to L1)
387 - No support for binding SID
388 - No support for SRMS
389 - No support for SRLB
390 - Only one SRGB and default SPF Algorithm is supported
392 .. clicmd:: segment-routing on
394 Enable Segment Routing.
396 .. clicmd:: segment-routing global-block (16-1048575) (16-1048575) [local-block (16-1048575) (16-1048575)]
398 Set the Segment Routing Global Block i.e. the label range used by MPLS
399 to store label in the MPLS FIB for Prefix SID. Note that the block size
400 may not exceed 65535. Optionally sets also the Segment Routing Local Block.
401 The negative command always unsets both.
403 .. clicmd:: segment-routing node-msd (1-16)
405 Set the Maximum Stack Depth supported by the router. The value depend of the
406 MPLS dataplane. E.g. for Linux kernel, since version 4.13 the maximum value
409 .. clicmd:: segment-routing prefix <A.B.C.D/M|X:X::X:X/M> <absolute (16-1048575)|index (0-65535) [no-php-flag|explicit-null] [n-flag-clear]
411 prefix. The 'no-php-flag' means NO Penultimate Hop Popping that allows SR
412 node to request to its neighbor to not pop the label. The 'explicit-null'
413 flag allows SR node to request to its neighbor to send IP packet with the
414 EXPLICIT-NULL label. The 'n-flag-clear' option can be used to explicitly
415 clear the Node flag that is set by default for Prefix-SIDs associated to
416 loopback addresses. This option is necessary to configure Anycast-SIDs.
418 .. clicmd:: show isis segment-routing node
420 Show detailed information about all learned Segment Routing Nodes.
425 .. clicmd:: debug isis adj-packets
427 IS-IS Adjacency related packets.
429 .. clicmd:: debug isis checksum-errors
431 IS-IS LSP checksum errors.
433 .. clicmd:: debug isis events
437 .. clicmd:: debug isis local-updates
439 IS-IS local update packets.
441 .. clicmd:: debug isis packet-dump
445 .. clicmd:: debug isis protocol-errors
447 IS-IS LSP protocol errors.
449 .. clicmd:: debug isis route-events
451 IS-IS Route related events.
453 .. clicmd:: debug isis snp-packets
455 IS-IS CSNP/PSNP packets.
457 .. clicmd:: debug isis spf-events
458 .. clicmd:: debug isis spf-statistics
459 .. clicmd:: debug isis spf-triggers
461 IS-IS Shortest Path First Events, Timing and Statistic Data and triggering
464 .. clicmd:: debug isis update-packets
467 Update related packets.
469 .. clicmd:: debug isis te-events
471 IS-IS Traffic Engineering events
473 .. clicmd:: debug isis sr-events
476 IS-IS Segment Routing events.
478 .. clicmd:: debug isis lfa
483 .. clicmd:: show debugging isis
485 Print which ISIS debug level is activate.
487 .. _isis-config-examples:
489 ISIS Configuration Examples
490 ===========================
492 A simple example, with MD5 authentication enabled:
499 isis network point-to-point
500 isis circuit-type level-2-only
503 net 47.0023.0000.0000.0000.0000.0000.0000.1900.0004.00
508 A Traffic Engineering configuration, with Inter-ASv2 support.
510 First, the :file:`zebra.conf` part:
516 log file /var/log/zebra.log
519 ip address 10.2.2.2/24
534 ip address 10.1.1.1/24
548 neighbor 10.1.1.2 as 65000
551 Then the :file:`isisd.conf` itself:
557 log file /var/log/isisd.log
568 isis net 47.0023.0000.0000.0000.0000.0000.0000.1900.0004.00
570 mpls-te router-address 10.1.1.1
574 A Segment Routing configuration, with IPv4, IPv6, SRGB and MSD configuration.
580 log file /var/log/isisd.log
585 isis network point-to-point
592 net 49.0000.0000.0000.0001.00
594 topology ipv6-unicast
597 segment-routing node-msd 8
598 segment-routing prefix 10.1.1.1/32 index 100 explicit-null
599 segment-routing prefix 2001:db8:1000::1/128 index 101 explicit-null
603 .. _isis-vrf-config-examples:
605 ISIS Vrf Configuration Examples
606 ===============================
608 A simple vrf example:
613 interface eth0 vrf RED
614 ip router isis FOO vrf RED
615 isis network point-to-point
616 isis circuit-type level-2-only
618 router isis FOO vrf RED
619 net 47.0023.0000.0000.0000.0000.0000.0000.1900.0004.00