Interior Vs Exterior - Learning Module

Loading content...

0/228

IGP Protocols

Routing Within Your Domain

When a packet needs to travel from one end of an enterprise campus to another, or from a data center edge to a core router within the same organization, it doesn't need to understand the complexities of global Internet routing. It doesn't need to know about AS paths, routing policies, or inter-organizational agreements. It simply needs to find the best path within its local domain.

This is the realm of Interior Gateway Protocols (IGPs)—the routing protocols designed to efficiently and automatically determine optimal paths within a single Autonomous System. IGPs are the workhorses of enterprise, data center, and service provider networks, running continuously to ensure that internal connectivity remains optimal even as conditions change.

What You Will Learn

By the end of this page, you will understand what defines an IGP, the fundamental algorithms they use (distance vector and link state), the major IGP protocols in use today (RIP, OSPF, IS-IS, EIGRP), their comparative strengths and weaknesses, and when to choose each. This knowledge is essential for designing, implementing, and troubleshooting modern networks.

What Defines an Interior Gateway Protocol?

Interior Gateway Protocols share a common purpose: determine the best paths for traffic within a single administrative domain. But what exactly distinguishes an IGP from its exterior counterparts?

Fundamental IGP Characteristics:

Defining Characteristics of IGPs

•Single AS Scope — IGPs operate exclusively within one Autonomous System. They have no concept of ASNs, AS paths, or inter-AS routing policies.
•Metric-Based Routing — IGPs select paths based on quantitative metrics (hop count, bandwidth, delay, cost) rather than policy. The 'best' path is mathematically determined.
•Trust Model — All routers within the AS are implicitly trusted. IGPs don't implement the security, filtering, or policy mechanisms that EGPs require.
•Automatic Topology Discovery — IGPs dynamically discover neighbors, learn about topology changes, and adapt routing tables accordingly—typically within seconds or minutes.
•Optimized for Convergence — IGPs prioritize rapid convergence after changes. When a link fails, routes should update quickly to minimize traffic loss.
•Network-Layer Focus — IGPs route based on IP destination addresses, selecting the optimal next hop for each destination prefix.

IGP vs. EGP Philosophy:

The fundamental difference between IGP and EGP is philosophy:

Aspect	IGP Philosophy	EGP Philosophy
Trust	All routers are trusted	Peers may be adversaries
Goal	Optimal paths (fastest, shortest)	Policy-compliant paths
Scope	Single organization	Multiple organizations
Information shared	Complete topology or metrics	Reachability and path info
Configuration	Relatively simple	Complex policy configuration
Convergence priority	Maximum speed	Stability over speed

Within your AS, you want the fastest, most efficient paths. Between ASes, you want paths that comply with business agreements, legal requirements, and security policies—even if they're not technically 'optimal.'

The Speed vs. Stability Trade-off

IGPs converge rapidly—sometimes in sub-second timeframes. EGPs (specifically BGP) intentionally converge more slowly, using timers and dampening to prevent route flapping from cascading across the Internet. This difference reflects their domains: inside an AS, fast response to failures is paramount; across ASes, stability protects the global routing system from localized instability.

The Two Fundamental Algorithms

All IGPs are built on one of two fundamental routing algorithms: Distance Vector or Link State. Understanding these algorithms is essential for understanding how different IGPs behave, their strengths, their limitations, and why network architects choose one over another.

Distance Vector Algorithm:

Based on the Bellman-Ford algorithm, distance vector protocols work by:

Each router maintains a table of (destination, distance/metric, next-hop)
Routers periodically send their entire routing table to neighbors
Neighbors update their tables based on received information
The metric to reach a destination = cost to neighbor + neighbor's reported cost to destination

Key characteristics:

Routers only know about neighbors—no full topology view
"Routing by rumor"—routers trust neighbors' reported distances
Simple to understand and implement
Convergence can be slow; vulnerable to count-to-infinity

Link State Algorithm:

Based on Dijkstra's Shortest Path First (SPF) algorithm:

Each router discovers its directly connected neighbors
Each router floods Link State Advertisements (LSAs) describing its connections
All routers build an identical database of the complete topology
Each router independently runs SPF to calculate optimal paths

Key characteristics:

Every router has complete topology knowledge
Calculates paths independently—no reliance on neighbors' decisions
Faster convergence, no count-to-infinity problem
More memory and CPU intensive than distance vector

Distance Vector vs. Link State Comparison
Characteristic	Distance Vector	Link State
Algorithm basis	Bellman-Ford	Dijkstra's SPF
Topology knowledge	Only next-hop for destinations	Complete network map
Update content	Entire routing table	Link state information only
Update trigger	Periodic (+ triggered updates)	Event-driven (topology changes)
Convergence speed	Slower (iterative)	Faster (instant recalculation)
Bandwidth usage	Higher (full table broadcasts)	Lower (incremental LSA floods)
Memory requirements	Lower	Higher (full LSDB)
CPU requirements	Lower	Higher (SPF calculation)
Loop prevention	Split horizon, poison reverse, holddown	Inherent (complete knowledge)
Scalability	Limited (smaller networks)	Better (hierarchical areas)
Example protocols	RIP, EIGRP*	OSPF, IS-IS

Note: EIGRP is sometimes called an "advanced distance vector" or "hybrid" protocol because it incorporates some link-state features like triggered updates and maintaining neighbor relationships, while fundamentally using distance vector principles.

Converting Mermaid diagram...

Path Vector: A Third Approach

There's actually a third approach: Path Vector, used by BGP. Path vector protocols share the complete AS path to each destination, enabling loop detection and policy-based routing. BGP is sometimes called a "path vector protocol" to distinguish it from pure distance vector (where only metrics are shared) and link state (where topology is shared).

RIP: The Classic Distance Vector Protocol

The Routing Information Protocol (RIP) is one of the oldest routing protocols still in use. First standardized in RFC 1058 (1988), RIP traces its origins to the Xerox PARC network in the 1970s and BSD Unix's routed daemon. While largely superseded in enterprise networks, RIP remains educational as the canonical distance vector implementation.

RIP Versions:

RIP Version Comparison
Feature	RIPv1	RIPv2	RIPng
RFC	RFC 1058 (1988)	RFC 2453 (1998)	RFC 2080 (1997)
IP Version	IPv4	IPv4	IPv6
Subnet support	No (classful)	Yes (VLSM/CIDR)	Yes
Authentication	None	Plain/MD5	IPsec
Updates	Broadcast	Multicast (224.0.0.9)	Multicast (FF02::9)
Next-hop field	No	Yes	Yes

RIP Operation:

Metric: Hop count (number of routers to destination). Maximum is 15; 16 means "unreachable."
Updates: Every 30 seconds, routers broadcast/multicast their complete routing table.
Timers:
- Update timer (30s): Regular full-table advertisements
- Invalid timer (180s): Route marked invalid if no update received
- Flush timer (240s): Route removed from table entirely
- Holddown timer (180s): Prevents accepting inferior routes during convergence
Loop Prevention Mechanisms:
- Split Horizon: Don't advertise a route back to the router you learned it from
- Split Horizon with Poison Reverse: Advertise learned routes back with metric 16 (unreachable)
- Holddown: After learning a route is down, ignore updates for a period
- Triggered Updates: Send immediate updates when routes change (don't wait 30s)

RIPv2 Configuration Example (Cisco IOS)

Router Config

! Basic RIPv2 Configuration
router rip
 version 2
 network 10.0.0.0        ! Enable RIP on all 10.x.x.x interfaces
 network 192.168.1.0     ! Enable RIP on this network
 no auto-summary         ! Disable classful summarization
 passive-interface Gig0/0  ! Don't send RIP on this interface (e.g., user-facing)
 
! Optional: Authentication
interface GigabitEthernet0/1
 ip rip authentication mode md5
 ip rip authentication key-chain RIP_KEYS
 
! Key chain for authentication
key chain RIP_KEYS
 key 1
  key-string MySecretKey123
  accept-lifetime 00:00:00 Jan 1 2024 infinite
  send-lifetime 00:00:00 Jan 1 2024 infinite

RIP Limitations

•Maximum 15 hops — Networks with diameter > 15 hops cannot use RIP
•Slow convergence — Can take minutes for changes to propagate
•Bandwidth inefficient — Full table broadcasts every 30 seconds waste bandwidth
•No bandwidth-aware metrics — A 10 Gbps link counts the same as a 1 Mbps link (1 hop)
•Count-to-infinity — Even with loop prevention, complex topologies can cause slow convergence
•No hierarchy — Cannot scale to large networks; no area concept like OSPF

Where RIP Still Makes Sense

Despite its limitations, RIP remains useful in very small, simple networks where administrative simplicity trumps performance, in legacy environments that haven't been upgraded, in education as a teaching tool for understanding routing fundamentals, and in certain Unix/Linux environments where routed provides basic routing capability.

OSPF: The Link State Standard

Open Shortest Path First (OSPF) is the most widely deployed IGP in enterprise and service provider networks. Standardized in RFC 2328 (OSPFv2 for IPv4) and RFC 5340 (OSPFv3 for IPv6), OSPF provides:

Fast convergence through event-driven updates
Hierarchical network design through areas
Support for VLSM and CIDR
Rich metric system based on interface cost
Extensive authentication options
Multi-vendor interoperability (open standard)

OSPF Fundamentals:

1. Neighbor Discovery and Adjacency Formation:

OSPF routers discover neighbors through Hello packets (multicast to 224.0.0.5)
Neighbors must agree on key parameters: area ID, hello/dead intervals, authentication, stub flags
Full adjacencies are formed only when needed (based on network type and DR/BDR election)

2. Link State Database (LSDB):

Every router maintains a synchronized LSDB containing Link State Advertisements (LSAs)
LSAs describe routers, networks, and their connections
Flooding ensures all routers in an area have identical LSDB

3. SPF Calculation:

Each router runs Dijkstra's algorithm on its LSDB
Results in a shortest-path tree rooted at the computing router
Routing table is derived from this tree

OSPF Network Types
Network Type	DR/BDR Election	Hello Interval	Use Case
Broadcast	Yes	10s	Ethernet LANs
Non-Broadcast (NBMA)	Yes	30s	Frame Relay, ATM (legacy)
Point-to-Point	No	10s	Serial links, GRE tunnels
Point-to-Multipoint	No	30s	Partial mesh NBMA
Point-to-Multipoint Non-Broadcast	No	30s	Partial mesh, no broadcast

OSPF Hierarchical Design:

OSPF introduces the concept of areas to enable hierarchical network design:

Area 0 (Backbone): All other areas must connect to Area 0, either directly or through virtual links
Regular Areas: Contain internal routers and connect to the backbone
Stub Areas: Don't receive external (Type 5) LSAs; use a default route instead
Totally Stubby Areas: Don't receive external or inter-area (Type 3) LSAs
Not-So-Stubby Areas (NSSA): Allow limited external route injection into stub areas

Areas provide:

Reduced LSDB size: Routers only need full topology for their own area
Faster SPF calculation: Smaller database = faster computation
Contained flooding: Topology changes flood only within an area
Route summarization: Area Border Routers (ABRs) can summarize routes at boundaries

Converting Mermaid diagram...

OSPF Configuration Example

Cisco IOS

! OSPF Configuration with Multiple Areas
router ospf 1
 router-id 1.1.1.1          ! Manually set router ID
 auto-cost reference-bandwidth 10000  ! Base for cost calculation (10 Gbps)
 
 ! Interface-level configuration (modern approach)
interface GigabitEthernet0/0
 ip address 10.1.1.1 255.255.255.0
 ip ospf 1 area 0            ! Place interface in backbone
 ip ospf cost 10             ! Manually set cost
 ip ospf priority 255        ! High priority for DR election
 
interface GigabitEthernet0/1 
 ip address 10.2.1.1 255.255.255.0
 ip ospf 1 area 1            ! Place in Area 1
 ip ospf network point-to-point  ! Force P2P (no DR election)
 
! Area configuration for stub
router ospf 1
 area 2 stub                  ! Make Area 2 a stub area
 area 2 stub no-summary       ! Totally stubby
 area 1 range 10.2.0.0 255.255.0.0  ! Summarize Area 1 routes

OSPF Cost Calculation

OSPF cost = Reference Bandwidth / Interface Bandwidth. The default reference is 100 Mbps, so a 100 Mbps link has cost 1 and a 10 Mbps link has cost 10. With modern high-speed links, you should increase the reference (e.g., to 10 Gbps or 100 Gbps) so that 1 Gbps and 10 Gbps links have different costs. Otherwise, they both calculate as cost 1!

IS-IS: The Service Provider Choice

Intermediate System to Intermediate System (IS-IS) is a link state IGP that, while less common in enterprises, dominates major service provider and hyperscale networks. Originally designed for the OSI protocol stack (ISO 10589), IS-IS was extended to support IP ("Integrated IS-IS") and later IPv6.

Why Service Providers Prefer IS-IS:

IS-IS Advantages for Large Networks

•Protocol Independence — IS-IS runs directly over Layer 2 (not IP), so it can route for any Layer 3 protocol and isn't dependent on IP for its own operation
•Simpler Hierarchical Design — Only two levels (L1 and L2) compared to OSPF's complex area types
•Extensibility — TLV (Type-Length-Value) structure makes adding new features straightforward without protocol changes
•Scalability Proven — Powers the world's largest networks (AT&T, Verizon, Facebook, Google)
•Traffic Engineering Support — Native support for MPLS-TE extensions
•Multiprotocol — Single protocol instance can support IPv4, IPv6, and future protocols simultaneously

IS-IS Fundamentals:

Addressing: IS-IS uses Network Entity Titles (NETs) to identify routers:

Format: 49.0001.0000.0000.0001.00
Area ID: 49.0001 (variable length)
System ID: 0000.0000.0001 (6 bytes, like MAC address format)
Selector: 00 (always 00 for routers)

Hierarchy:

Level 1 (L1): Intra-area routing (like OSPF regular area)
Level 2 (L2): Inter-area routing (like OSPF backbone)
Level 1-2 (L1/L2): Router that participates in both (like OSPF ABR)

Unlike OSPF, there's no requirement for a contiguous backbone. Any chain of L2-capable routers forms the backbone.

PDU Types:

IIH (IS-IS Hello): Neighbor discovery and maintenance
LSP (Link State PDU): Carry topology information
CSNP (Complete Sequence Number PDU): Database synchronization
PSNP (Partial Sequence Number PDU): Request specific LSPs or acknowledge receipt

OSPF vs. IS-IS Comparison
Aspect	OSPF	IS-IS
Runs over	IP (protocol 89)	Layer 2 directly
Hierarchy	Areas (Area 0 backbone)	Two levels (L1, L2)
Backbone requirement	Contiguous Area 0	Any L2 path
Router types	Internal, ABR, ASBR	L1, L2, L1/L2
Hello destination	224.0.0.5 / 224.0.0.6	Multicast MAC addresses
Database	LSDB with LSA types	LSDB with TLVs
Extension mechanism	New LSA types (complex)	New TLVs (simple)
Metric range	1-65,535 (16-bit)	1-16,777,215 (24-bit wide)
MD5 authentication	LSA-level	PDU-level
Multi-topology	Requires MT-OSPF (limited)	Native support

IS-IS Configuration Example

Cisco IOS

! IS-IS Configuration for Service Provider Core
router isis CORE
 net 49.0001.0000.0000.0001.00    ! NET address
 is-type level-2-only              ! Core routers often L2-only
 metric-style wide                 ! Use 24-bit metrics
 log-adjacency-changes
 
 ! IPv4 and IPv6 address families
 address-family ipv4 unicast       
  metric-style wide
  mpls traffic-eng router-id Loopback0
  mpls traffic-eng level-2
 exit-address-family
 
 address-family ipv6 unicast
  multi-topology                   ! Separate IPv6 SPF calculation
 exit-address-family
 
! Interface configuration
interface GigabitEthernet0/0
 ip router isis CORE
 ipv6 router isis CORE
 isis circuit-type level-2-only
 isis network point-to-point       ! P2P for core links
 isis metric 100 level-2           ! Set explicit metric

When to Choose IS-IS

Choose IS-IS for large-scale service provider networks, environments requiring MPLS Traffic Engineering, networks that need IPv4 and IPv6 with independent topologies, and when you want simpler extensibility for future protocols. Choose OSPF for enterprises with OSPF expertise, smaller networks where OSPF's rich feature set adds value, and environments where IP-based operation is preferred.

EIGRP: The Advanced Distance Vector

Enhanced Interior Gateway Routing Protocol (EIGRP) is Cisco's proprietary (now partially open-standard) routing protocol that combines distance vector simplicity with link state-like features. Often called a "hybrid" or "advanced distance vector" protocol, EIGRP offers:

Very fast convergence (often sub-second)
Loop-free paths guaranteed by DUAL algorithm
Reduced bandwidth usage (only incremental updates)
Support for multiple routed protocols (IP, IPv6, legacy IPX/AppleTalk)
Unequal-cost load balancing capability

The DUAL Algorithm:

EIGRP's Diffusing Update Algorithm (DUAL) is what sets it apart from traditional distance vector protocols:

Feasibility Condition: A route is "feasible" (loop-free) if the neighbor's reported distance to a destination is less than the router's current feasible distance. This mathematical guarantee prevents loops without waiting for holddown timers.
Successor and Feasible Successor:
- The Successor is the best route to a destination
- Feasible Successors are backup routes that meet the feasibility condition
- When a Successor fails, EIGRP can instantly switch to a Feasible Successor (no SPF calculation needed)
Active vs. Passive State:
- Passive: Route is stable; Successor is known
- Active: No Feasible Successor available; EIGRP queries neighbors to find alternative paths

The DUAL algorithm provides mathematical correctness guarantees that traditional distance vector protocols lack, while avoiding the computational overhead of full SPF recalculation.

EIGRP Metric Components (Classic Mode)
Component	Description	K-value	Default
Bandwidth	Minimum bandwidth along path	K1	Enabled
Delay	Cumulative delay along path	K3	Enabled
Reliability	% of successfully transmitted packets	K4, K5	Disabled
Load	% utilization of link	K2	Disabled
MTU	Minimum MTU along path	—	Not in metric

EIGRP Metric Calculation (Simplified):

Metric = 256 × (K1×Bandwidth + K2×Bandwidth/(256-Load) + K3×Delay)
         × K5/(Reliability + K4)

With default K-values (K1=1, K2=0, K3=1, K4=0, K5=0), this simplifies to:

Metric = 256 × (Bandwidth + Delay)

Where:

Bandwidth = 10^7 / (minimum bandwidth in Kbps)
Delay = sum of delays in tens of microseconds

Wide Metrics (RFC 7868): Modern EIGRP uses 64-bit wide metrics to handle high-speed interfaces properly, avoiding the issue where all high-speed links calculate identical metrics.

EIGRP Configuration Example

Cisco IOS (Named Mode)

! EIGRP Named Mode Configuration (Modern)
router eigrp ENTERPRISE
 !
 address-family ipv4 unicast autonomous-system 100
  !
  af-interface default
   passive-interface           ! Default all interfaces to passive
   authentication mode md5
   authentication key-chain EIGRP_KEYS
  exit-af-interface
  !
  af-interface GigabitEthernet0/0
   no passive-interface        ! Enable EIGRP on this interface
   summary-address 10.0.0.0 255.0.0.0  ! Summarize at this interface
  exit-af-interface
  !
  topology base
   variance 2                  ! Allow unequal cost load balancing
   redistribute static metric 100000 1000 255 1 1500
  exit-af-topology
  !
  network 10.0.0.0 0.255.255.255   ! Enable on 10.x.x.x networks
  eigrp router-id 1.1.1.1
 exit-address-family
 
! Key chain for authentication  
key chain EIGRP_KEYS
 key 1
  key-string EIGRP_Secret_2024

EIGRP Strengths

•Fastest convergence — Sub-second failover with Feasible Successors
•Low bandwidth — Only triggered, incremental updates
•Unequal-cost load balancing — Spread traffic across multiple paths with variance
•Simple configuration — Easier to configure than OSPF in many scenarios
•Flexible summarization — Summarize routes at any point (not just area boundaries)

EIGRP Limitations

•Vendor lock-in — Historically Cisco-only (now RFC 7868, limited adoption)
•Query scope — Active queries can propagate widely, causing SIA (Stuck in Active)
•No formal hierarchy — Unlike OSPF areas, summarization is ad-hoc
•Metric complexity — Composite metrics can be hard to predict and troubleshoot
•Limited multi-vendor — Despite RFC, most non-Cisco vendors don't support it

EIGRP in Modern Networks

While EIGRP remains popular in Cisco-only enterprise environments, the industry trend toward multi-vendor networks, automation, and software-defined approaches increasingly favors OSPF and IS-IS. If building a new network, consider whether EIGRP's Cisco-centric nature aligns with your long-term strategy. For Cisco shops with existing EIGRP deployments, it remains an excellent, highly performant choice.

Choosing the Right IGP

Selecting an IGP is one of the most important network design decisions. The right choice depends on network size, vendor environment, required features, and operational expertise. Here's a decision framework:

IGP Selection Guide
Scenario	Recommended IGP	Rationale
Enterprise, <100 routers, Cisco	EIGRP or OSPF	EIGRP simpler if Cisco-only; OSPF if multi-vendor planned
Enterprise, multi-vendor	OSPF	Industry standard, excellent interoperability
Service provider core	IS-IS	Proven at scale, MPLS-TE support, extensibility
Data center fabric	OSPF or IS-IS	OSPF for simplicity; IS-IS for hyperscale
Small branch (<10 routers)	OSPF or even RIP	Keep it simple; complexity isn't justified
Greenfield SP network	IS-IS	Future-proof, segment routing ready
IPv6 primary	OSPFv3 or IS-IS	Both have excellent IPv6 support

Key Decision Factors:

1. Network Scale:

Small (< 50 routers): Any IGP works; choose based on familiarity
Medium (50-500 routers): OSPF or EIGRP with proper area/summarization design
Large (500+ routers): IS-IS or well-designed OSPF with route reflectors/confederation

2. Vendor Mix:

Cisco-only: EIGRP is a strong option
Multi-vendor: OSPF or IS-IS (both are open standards)
Open-source/Linux routers: OSPF (FRRouting, Quagga support excellent)

3. Existing Expertise:

Don't underestimate operational familiarity
Migrating protocols is costly; choose something the team knows or can learn

4. Future Requirements:

MPLS Traffic Engineering: IS-IS has best TE integration
Segment Routing: Both OSPF and IS-IS support SR extensions
IPv6: OSPFv3 or IS-IS with IPv6 AF

5. Convergence Requirements:

Subsecond: EIGRP (with feasible successors) or OSPF/IS-IS with BFD
Standard: Any IGP with tuned timers
Best-effort: Default configurations work

The Multi-Protocol Reality

In practice, large networks often run multiple IGPs. A service provider might run IS-IS in the core and OSPF in customer-facing segments. An enterprise might have EIGRP in the campus and OSPF in the data center. Redistribution between protocols adds complexity but enables the right tool for each domain. Design redistribution points carefully to avoid routing loops and optimal path issues.

Summary: IGP Protocols

We've explored the rich landscape of Interior Gateway Protocols. Let's consolidate the essential knowledge:

Key Takeaways

•IGPs route within a single AS — They optimize for performance metrics, not policy, within a trusted administrative domain.
•Two fundamental algorithms exist — Distance vector (Bellman-Ford) and link state (Dijkstra), each with distinct characteristics.
•RIP is simple but limited — Hop-count metric, 15-hop maximum, slow convergence. Educational value exceeds production use today.
•OSPF is the enterprise standard — Hierarchical areas, rich feature set, excellent multi-vendor support. The default choice for many networks.
•IS-IS dominates at scale — Service providers and hyperscalers prefer it for extensibility, simplicity, and proven scalability.
•EIGRP offers speed — Fastest convergence thanks to DUAL, but Cisco-centric nature limits multi-vendor adoption.
•Choose based on context — Network size, vendor environment, expertise, and future requirements all influence the right choice.

What's Next:

Having mastered IGP protocols, we'll now turn to EGP protocols—specifically BGP, the protocol that glues the Internet together. Understanding how traffic moves between Autonomous Systems is essential for anyone working with Internet-connected infrastructure.

Page Complete

You now have comprehensive knowledge of Interior Gateway Protocols—the workhorses that route traffic within Autonomous Systems. From RIP's simplicity to OSPF's enterprise dominance to IS-IS's service provider strength, you understand the landscape. Next, we'll explore EGP protocols and the critical role BGP plays in Internet routing.

IGP Protocols

Routing Within Your Domain

What You Will Learn

What Defines an Interior Gateway Protocol?

Interior Gateway Protocols share a common purpose: determine the best paths for traffic within a single administrative domain. But what exactly distinguishes an IGP from its exterior counterparts?

Fundamental IGP Characteristics:

Defining Characteristics of IGPs

•Single AS Scope — IGPs operate exclusively within one Autonomous System. They have no concept of ASNs, AS paths, or inter-AS routing policies.
•Metric-Based Routing — IGPs select paths based on quantitative metrics (hop count, bandwidth, delay, cost) rather than policy. The 'best' path is mathematically determined.
•Trust Model — All routers within the AS are implicitly trusted. IGPs don't implement the security, filtering, or policy mechanisms that EGPs require.
•Automatic Topology Discovery — IGPs dynamically discover neighbors, learn about topology changes, and adapt routing tables accordingly—typically within seconds or minutes.
•Optimized for Convergence — IGPs prioritize rapid convergence after changes. When a link fails, routes should update quickly to minimize traffic loss.
•Network-Layer Focus — IGPs route based on IP destination addresses, selecting the optimal next hop for each destination prefix.

IGP vs. EGP Philosophy:

The fundamental difference between IGP and EGP is philosophy:

Aspect	IGP Philosophy	EGP Philosophy
Trust	All routers are trusted	Peers may be adversaries
Goal	Optimal paths (fastest, shortest)	Policy-compliant paths
Scope	Single organization	Multiple organizations
Information shared	Complete topology or metrics	Reachability and path info
Configuration	Relatively simple	Complex policy configuration
Convergence priority	Maximum speed	Stability over speed

The Speed vs. Stability Trade-off

The Two Fundamental Algorithms

Distance Vector Algorithm:

Based on the Bellman-Ford algorithm, distance vector protocols work by:

Each router maintains a table of (destination, distance/metric, next-hop)
Routers periodically send their entire routing table to neighbors
Neighbors update their tables based on received information
The metric to reach a destination = cost to neighbor + neighbor's reported cost to destination

Key characteristics:

Routers only know about neighbors—no full topology view
"Routing by rumor"—routers trust neighbors' reported distances
Simple to understand and implement
Convergence can be slow; vulnerable to count-to-infinity

Link State Algorithm:

Based on Dijkstra's Shortest Path First (SPF) algorithm:

Each router discovers its directly connected neighbors
Each router floods Link State Advertisements (LSAs) describing its connections
All routers build an identical database of the complete topology
Each router independently runs SPF to calculate optimal paths

Key characteristics:

Every router has complete topology knowledge
Calculates paths independently—no reliance on neighbors' decisions
Faster convergence, no count-to-infinity problem
More memory and CPU intensive than distance vector

Distance Vector vs. Link State Comparison
Characteristic	Distance Vector	Link State
Algorithm basis	Bellman-Ford	Dijkstra's SPF
Topology knowledge	Only next-hop for destinations	Complete network map
Update content	Entire routing table	Link state information only
Update trigger	Periodic (+ triggered updates)	Event-driven (topology changes)
Convergence speed	Slower (iterative)	Faster (instant recalculation)
Bandwidth usage	Higher (full table broadcasts)	Lower (incremental LSA floods)
Memory requirements	Lower	Higher (full LSDB)
CPU requirements	Lower	Higher (SPF calculation)
Loop prevention	Split horizon, poison reverse, holddown	Inherent (complete knowledge)
Scalability	Limited (smaller networks)	Better (hierarchical areas)
Example protocols	RIP, EIGRP*	OSPF, IS-IS

Converting Mermaid diagram...

Path Vector: A Third Approach

RIP: The Classic Distance Vector Protocol

RIP Versions:

RIP Version Comparison
Feature	RIPv1	RIPv2	RIPng
RFC	RFC 1058 (1988)	RFC 2453 (1998)	RFC 2080 (1997)
IP Version	IPv4	IPv4	IPv6
Subnet support	No (classful)	Yes (VLSM/CIDR)	Yes
Authentication	None	Plain/MD5	IPsec
Updates	Broadcast	Multicast (224.0.0.9)	Multicast (FF02::9)
Next-hop field	No	Yes	Yes

RIP Operation:

Metric: Hop count (number of routers to destination). Maximum is 15; 16 means "unreachable."
Updates: Every 30 seconds, routers broadcast/multicast their complete routing table.
Timers:
- Update timer (30s): Regular full-table advertisements
- Invalid timer (180s): Route marked invalid if no update received
- Flush timer (240s): Route removed from table entirely
- Holddown timer (180s): Prevents accepting inferior routes during convergence
Loop Prevention Mechanisms:
- Split Horizon: Don't advertise a route back to the router you learned it from
- Split Horizon with Poison Reverse: Advertise learned routes back with metric 16 (unreachable)
- Holddown: After learning a route is down, ignore updates for a period
- Triggered Updates: Send immediate updates when routes change (don't wait 30s)

RIPv2 Configuration Example (Cisco IOS)

Router Config

! Basic RIPv2 Configuration
router rip
 version 2
 network 10.0.0.0        ! Enable RIP on all 10.x.x.x interfaces
 network 192.168.1.0     ! Enable RIP on this network
 no auto-summary         ! Disable classful summarization
 passive-interface Gig0/0  ! Don't send RIP on this interface (e.g., user-facing)
 
! Optional: Authentication
interface GigabitEthernet0/1
 ip rip authentication mode md5
 ip rip authentication key-chain RIP_KEYS
 
! Key chain for authentication
key chain RIP_KEYS
 key 1
  key-string MySecretKey123
  accept-lifetime 00:00:00 Jan 1 2024 infinite
  send-lifetime 00:00:00 Jan 1 2024 infinite

RIP Limitations

•Maximum 15 hops — Networks with diameter > 15 hops cannot use RIP
•Slow convergence — Can take minutes for changes to propagate
•Bandwidth inefficient — Full table broadcasts every 30 seconds waste bandwidth
•No bandwidth-aware metrics — A 10 Gbps link counts the same as a 1 Mbps link (1 hop)
•Count-to-infinity — Even with loop prevention, complex topologies can cause slow convergence
•No hierarchy — Cannot scale to large networks; no area concept like OSPF

Where RIP Still Makes Sense

OSPF: The Link State Standard

Fast convergence through event-driven updates
Hierarchical network design through areas
Support for VLSM and CIDR
Rich metric system based on interface cost
Extensive authentication options
Multi-vendor interoperability (open standard)

OSPF Fundamentals:

1. Neighbor Discovery and Adjacency Formation:

OSPF routers discover neighbors through Hello packets (multicast to 224.0.0.5)
Neighbors must agree on key parameters: area ID, hello/dead intervals, authentication, stub flags
Full adjacencies are formed only when needed (based on network type and DR/BDR election)

2. Link State Database (LSDB):

Every router maintains a synchronized LSDB containing Link State Advertisements (LSAs)
LSAs describe routers, networks, and their connections
Flooding ensures all routers in an area have identical LSDB

3. SPF Calculation:

Each router runs Dijkstra's algorithm on its LSDB
Results in a shortest-path tree rooted at the computing router
Routing table is derived from this tree

OSPF Network Types
Network Type	DR/BDR Election	Hello Interval	Use Case
Broadcast	Yes	10s	Ethernet LANs
Non-Broadcast (NBMA)	Yes	30s	Frame Relay, ATM (legacy)
Point-to-Point	No	10s	Serial links, GRE tunnels
Point-to-Multipoint	No	30s	Partial mesh NBMA
Point-to-Multipoint Non-Broadcast	No	30s	Partial mesh, no broadcast

OSPF Hierarchical Design:

OSPF introduces the concept of areas to enable hierarchical network design:

Area 0 (Backbone): All other areas must connect to Area 0, either directly or through virtual links
Regular Areas: Contain internal routers and connect to the backbone
Stub Areas: Don't receive external (Type 5) LSAs; use a default route instead
Totally Stubby Areas: Don't receive external or inter-area (Type 3) LSAs
Not-So-Stubby Areas (NSSA): Allow limited external route injection into stub areas

Areas provide:

Reduced LSDB size: Routers only need full topology for their own area
Faster SPF calculation: Smaller database = faster computation
Contained flooding: Topology changes flood only within an area
Route summarization: Area Border Routers (ABRs) can summarize routes at boundaries

Converting Mermaid diagram...

OSPF Configuration Example

Cisco IOS

! OSPF Configuration with Multiple Areas
router ospf 1
 router-id 1.1.1.1          ! Manually set router ID
 auto-cost reference-bandwidth 10000  ! Base for cost calculation (10 Gbps)
 
 ! Interface-level configuration (modern approach)
interface GigabitEthernet0/0
 ip address 10.1.1.1 255.255.255.0
 ip ospf 1 area 0            ! Place interface in backbone
 ip ospf cost 10             ! Manually set cost
 ip ospf priority 255        ! High priority for DR election
 
interface GigabitEthernet0/1 
 ip address 10.2.1.1 255.255.255.0
 ip ospf 1 area 1            ! Place in Area 1
 ip ospf network point-to-point  ! Force P2P (no DR election)
 
! Area configuration for stub
router ospf 1
 area 2 stub                  ! Make Area 2 a stub area
 area 2 stub no-summary       ! Totally stubby
 area 1 range 10.2.0.0 255.255.0.0  ! Summarize Area 1 routes

OSPF Cost Calculation

IS-IS: The Service Provider Choice

Why Service Providers Prefer IS-IS:

IS-IS Advantages for Large Networks

•Protocol Independence — IS-IS runs directly over Layer 2 (not IP), so it can route for any Layer 3 protocol and isn't dependent on IP for its own operation
•Simpler Hierarchical Design — Only two levels (L1 and L2) compared to OSPF's complex area types
•Extensibility — TLV (Type-Length-Value) structure makes adding new features straightforward without protocol changes
•Scalability Proven — Powers the world's largest networks (AT&T, Verizon, Facebook, Google)
•Traffic Engineering Support — Native support for MPLS-TE extensions
•Multiprotocol — Single protocol instance can support IPv4, IPv6, and future protocols simultaneously

IS-IS Fundamentals:

Addressing: IS-IS uses Network Entity Titles (NETs) to identify routers:

Format: 49.0001.0000.0000.0001.00
Area ID: 49.0001 (variable length)
System ID: 0000.0000.0001 (6 bytes, like MAC address format)
Selector: 00 (always 00 for routers)

Hierarchy:

Level 1 (L1): Intra-area routing (like OSPF regular area)
Level 2 (L2): Inter-area routing (like OSPF backbone)
Level 1-2 (L1/L2): Router that participates in both (like OSPF ABR)

Unlike OSPF, there's no requirement for a contiguous backbone. Any chain of L2-capable routers forms the backbone.

PDU Types:

IIH (IS-IS Hello): Neighbor discovery and maintenance
LSP (Link State PDU): Carry topology information
CSNP (Complete Sequence Number PDU): Database synchronization
PSNP (Partial Sequence Number PDU): Request specific LSPs or acknowledge receipt

OSPF vs. IS-IS Comparison
Aspect	OSPF	IS-IS
Runs over	IP (protocol 89)	Layer 2 directly
Hierarchy	Areas (Area 0 backbone)	Two levels (L1, L2)
Backbone requirement	Contiguous Area 0	Any L2 path
Router types	Internal, ABR, ASBR	L1, L2, L1/L2
Hello destination	224.0.0.5 / 224.0.0.6	Multicast MAC addresses
Database	LSDB with LSA types	LSDB with TLVs
Extension mechanism	New LSA types (complex)	New TLVs (simple)
Metric range	1-65,535 (16-bit)	1-16,777,215 (24-bit wide)
MD5 authentication	LSA-level	PDU-level
Multi-topology	Requires MT-OSPF (limited)	Native support

IS-IS Configuration Example

Cisco IOS

! IS-IS Configuration for Service Provider Core
router isis CORE
 net 49.0001.0000.0000.0001.00    ! NET address
 is-type level-2-only              ! Core routers often L2-only
 metric-style wide                 ! Use 24-bit metrics
 log-adjacency-changes
 
 ! IPv4 and IPv6 address families
 address-family ipv4 unicast       
  metric-style wide
  mpls traffic-eng router-id Loopback0
  mpls traffic-eng level-2
 exit-address-family
 
 address-family ipv6 unicast
  multi-topology                   ! Separate IPv6 SPF calculation
 exit-address-family
 
! Interface configuration
interface GigabitEthernet0/0
 ip router isis CORE
 ipv6 router isis CORE
 isis circuit-type level-2-only
 isis network point-to-point       ! P2P for core links
 isis metric 100 level-2           ! Set explicit metric

When to Choose IS-IS

EIGRP: The Advanced Distance Vector

Very fast convergence (often sub-second)
Loop-free paths guaranteed by DUAL algorithm
Reduced bandwidth usage (only incremental updates)
Support for multiple routed protocols (IP, IPv6, legacy IPX/AppleTalk)
Unequal-cost load balancing capability

The DUAL Algorithm:

EIGRP's Diffusing Update Algorithm (DUAL) is what sets it apart from traditional distance vector protocols:

Feasibility Condition: A route is "feasible" (loop-free) if the neighbor's reported distance to a destination is less than the router's current feasible distance. This mathematical guarantee prevents loops without waiting for holddown timers.
Successor and Feasible Successor:
- The Successor is the best route to a destination
- Feasible Successors are backup routes that meet the feasibility condition
- When a Successor fails, EIGRP can instantly switch to a Feasible Successor (no SPF calculation needed)
Active vs. Passive State:
- Passive: Route is stable; Successor is known
- Active: No Feasible Successor available; EIGRP queries neighbors to find alternative paths

The DUAL algorithm provides mathematical correctness guarantees that traditional distance vector protocols lack, while avoiding the computational overhead of full SPF recalculation.

EIGRP Metric Components (Classic Mode)
Component	Description	K-value	Default
Bandwidth	Minimum bandwidth along path	K1	Enabled
Delay	Cumulative delay along path	K3	Enabled
Reliability	% of successfully transmitted packets	K4, K5	Disabled
Load	% utilization of link	K2	Disabled
MTU	Minimum MTU along path	—	Not in metric

EIGRP Metric Calculation (Simplified):

Metric = 256 × (K1×Bandwidth + K2×Bandwidth/(256-Load) + K3×Delay)
         × K5/(Reliability + K4)

With default K-values (K1=1, K2=0, K3=1, K4=0, K5=0), this simplifies to:

Metric = 256 × (Bandwidth + Delay)

Where:

Bandwidth = 10^7 / (minimum bandwidth in Kbps)
Delay = sum of delays in tens of microseconds

Wide Metrics (RFC 7868): Modern EIGRP uses 64-bit wide metrics to handle high-speed interfaces properly, avoiding the issue where all high-speed links calculate identical metrics.

EIGRP Configuration Example

Cisco IOS (Named Mode)

! EIGRP Named Mode Configuration (Modern)
router eigrp ENTERPRISE
 !
 address-family ipv4 unicast autonomous-system 100
  !
  af-interface default
   passive-interface           ! Default all interfaces to passive
   authentication mode md5
   authentication key-chain EIGRP_KEYS
  exit-af-interface
  !
  af-interface GigabitEthernet0/0
   no passive-interface        ! Enable EIGRP on this interface
   summary-address 10.0.0.0 255.0.0.0  ! Summarize at this interface
  exit-af-interface
  !
  topology base
   variance 2                  ! Allow unequal cost load balancing
   redistribute static metric 100000 1000 255 1 1500
  exit-af-topology
  !
  network 10.0.0.0 0.255.255.255   ! Enable on 10.x.x.x networks
  eigrp router-id 1.1.1.1
 exit-address-family
 
! Key chain for authentication  
key chain EIGRP_KEYS
 key 1
  key-string EIGRP_Secret_2024

EIGRP Strengths

•Fastest convergence — Sub-second failover with Feasible Successors
•Low bandwidth — Only triggered, incremental updates
•Unequal-cost load balancing — Spread traffic across multiple paths with variance
•Simple configuration — Easier to configure than OSPF in many scenarios
•Flexible summarization — Summarize routes at any point (not just area boundaries)

EIGRP Limitations

•Vendor lock-in — Historically Cisco-only (now RFC 7868, limited adoption)
•Query scope — Active queries can propagate widely, causing SIA (Stuck in Active)
•No formal hierarchy — Unlike OSPF areas, summarization is ad-hoc
•Metric complexity — Composite metrics can be hard to predict and troubleshoot
•Limited multi-vendor — Despite RFC, most non-Cisco vendors don't support it

EIGRP in Modern Networks

Choosing the Right IGP

IGP Selection Guide
Scenario	Recommended IGP	Rationale
Enterprise, <100 routers, Cisco	EIGRP or OSPF	EIGRP simpler if Cisco-only; OSPF if multi-vendor planned
Enterprise, multi-vendor	OSPF	Industry standard, excellent interoperability
Service provider core	IS-IS	Proven at scale, MPLS-TE support, extensibility
Data center fabric	OSPF or IS-IS	OSPF for simplicity; IS-IS for hyperscale
Small branch (<10 routers)	OSPF or even RIP	Keep it simple; complexity isn't justified
Greenfield SP network	IS-IS	Future-proof, segment routing ready
IPv6 primary	OSPFv3 or IS-IS	Both have excellent IPv6 support

Key Decision Factors:

1. Network Scale:

Small (< 50 routers): Any IGP works; choose based on familiarity
Medium (50-500 routers): OSPF or EIGRP with proper area/summarization design
Large (500+ routers): IS-IS or well-designed OSPF with route reflectors/confederation

2. Vendor Mix:

Cisco-only: EIGRP is a strong option
Multi-vendor: OSPF or IS-IS (both are open standards)
Open-source/Linux routers: OSPF (FRRouting, Quagga support excellent)

3. Existing Expertise:

Don't underestimate operational familiarity
Migrating protocols is costly; choose something the team knows or can learn

4. Future Requirements:

MPLS Traffic Engineering: IS-IS has best TE integration
Segment Routing: Both OSPF and IS-IS support SR extensions
IPv6: OSPFv3 or IS-IS with IPv6 AF

5. Convergence Requirements:

Subsecond: EIGRP (with feasible successors) or OSPF/IS-IS with BFD
Standard: Any IGP with tuned timers
Best-effort: Default configurations work

The Multi-Protocol Reality

Summary: IGP Protocols

We've explored the rich landscape of Interior Gateway Protocols. Let's consolidate the essential knowledge:

Key Takeaways

•IGPs route within a single AS — They optimize for performance metrics, not policy, within a trusted administrative domain.
•Two fundamental algorithms exist — Distance vector (Bellman-Ford) and link state (Dijkstra), each with distinct characteristics.
•RIP is simple but limited — Hop-count metric, 15-hop maximum, slow convergence. Educational value exceeds production use today.
•OSPF is the enterprise standard — Hierarchical areas, rich feature set, excellent multi-vendor support. The default choice for many networks.
•IS-IS dominates at scale — Service providers and hyperscalers prefer it for extensibility, simplicity, and proven scalability.
•EIGRP offers speed — Fastest convergence thanks to DUAL, but Cisco-centric nature limits multi-vendor adoption.
•Choose based on context — Network size, vendor environment, expertise, and future requirements all influence the right choice.

What's Next:

Page Complete