The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
This module describes the configuration of object tracking on your Cisco IOS XR network. For complete descriptions of the commands listed in this module, see Additional References section. To locate documentation for other commands that might appear in the course of performing a configuration task, see Technical Documentation section in the Additional References topic.
This module describes the configuration of object tracking on your Cisco IOS XR network. For complete descriptions of the commands listed in this module, see Additional References section. To locate documentation for other commands that might appear in the course of performing a configuration task, see Technical Documentation section in the Additional References topic.
You must be in a user group associated with a task group that includes the proper task IDs. The command reference guides include the task IDs required for each command. If you suspect user group assignment is preventing you from using a command, contact your AAA administrator for assistance.
 Note |
Object Tracking is an optional package. You must check if this package is installed on your system by running the command show install active summary . |
Object tracking is a mechanism to track an object and to take an action on another object with no relationship to the tracked objects, based on changes to the properties of the object being tracked.
Each tracked object is identified by a unique name specified on the tracking command-line interface (CLI). Cisco IOS XR processes then use this name to track a specific object.
The tracking process periodically polls the tracked object and reports any changes to its state in terms of its being up or down, either immediately or after a delay, as configured by the user.
Multiple objects can also be tracked by means of a list, using a flexible method for combining objects with Boolean logic. This functionality includes:
This section describes the various object tracking procedures.
Perform this task in global configuration mode to track the line protocol state of an interface.
A tracked object is considered up when a line protocol of the interface is up.
After configuring the tracked object, you may associate the interface whose state should be tracked and specify the number of seconds to wait before the tracking object polls the interface for its state.
| Command or Action | Purpose | |||||
|---|---|---|---|---|---|---|
|
Step 1 |
configure Example: |
Enters mode. |
||||
|
Step 2 |
track track-name Example: |
Enters track configuration mode.
|
||||
|
Step 3 |
type line-protocol state Example: |
Creates a track based on the line protocol of an interface. |
||||
|
Step 4 |
interface type interface-path-id Example: |
Specifies the interface to track the protocol state.
|
||||
|
Step 5 |
exit Example: |
Exits the track line protocol configuration mode. |
||||
|
Step 6 |
(Optional) delay { up seconds| down seconds} Example: |
(Optional)
Schedules the delay that can occur between tracking whether the object is up or down. |
||||
|
Step 7 |
Use one of the following commands:
Example:or |
Saves configuration changes.
|
When a host or a network goes down on a remote site, routing protocols notify the router and the routing table is updated accordingly. The routing process is configured to notify the tracking process when the route state changes due to a routing update.
A tracked object is considered up when a routing table entry exists for the route and the route is accessible.
| Command or Action | Purpose | |
|---|---|---|
|
Step 1 |
configure Example: |
Enters mode. |
|
Step 2 |
track track-name Example: |
Enters track configuration mode.
|
|
Step 3 |
type route reachability Example: |
Configures the routing process to notify the tracking process when the state of the route changes due to a routing update. |
|
Step 4 |
Use one of the following commands:
Example:or |
Configures the type of IP route to be tracked, which can consist of either of the following, depending on your router type:
|
|
Step 5 |
exit Example: |
Exits the track line protocol configuration mode. |
|
Step 6 |
(Optional) delay { up seconds| down seconds} Example: |
(Optional)
Schedules the delay that can occur between tracking whether the object is up or down. |
|
Step 7 |
Use the commit or end command. |
commit —Saves the configuration changes, and remains within the configuration session.
|
Perform this task in the global configuration mode to create a tracked list of objects (which, in this case, are lists of interfaces or prefixes) using a Boolean expression to determine the state of the list.
A tracked list contains one or more objects. The Boolean expression enables two types of calculations by using either AND or OR operators. For example, when tracking two interfaces, using the AND operator, up means that both interfaces are up, and down means that either interface is down.
Note |
An object must exist before it can be added to a tracked list. The NOT operator is specified for one or more objects and negates the state of the object. |
After configuring the tracked object, you must associate the interface whose state should be tracked and you may optionally specify the number of seconds to wait before the tracking object polls the interface for its state.
| Command or Action | Purpose | |
|---|---|---|
|
Step 1 |
configure Example: |
Enters mode. |
|
Step 2 |
track track-name Example: |
Enters track configuration mode.
|
|
Step 3 |
type list boolean { and | or } Example: |
Configures a Boolean list object and enters track list configuration mode.
|
|
Step 4 |
object object-name [ not ] Example: |
Specifies the object to be tracked by the list
|
|
Step 5 |
exit Example: |
Exits the track line protocol configuration mode. |
|
Step 6 |
(Optional) delay { up seconds| down seconds} Example: |
(Optional)
Schedules the delay that can occur between tracking whether the object is up or down. |
|
Step 7 |
Use one of the following commands:
Example:or |
Saves configuration changes.
|
Perform this task in the global configuration mode to create a tracked list of objects (which, in this case, are lists of interfaces or prefixes) using a threshold percentage to determine the state of the list.
| Command or Action | Purpose | |
|---|---|---|
|
Step 1 |
configure Example: |
Enters mode. |
|
Step 2 |
track track-name Example: |
Enters track configuration mode.
|
|
Step 3 |
type list threshold percentage Example: |
Configures a track of type threshold percentage list. |
|
Step 4 |
object object-name Example: |
Configures object 1, object 2, object 3 and object 4 as members of track type track1. |
|
Step 5 |
threshold percentage up percentage down percentage Example: |
Configures the percentage of objects that need to be UP or DOWN for the list to be considered UP or Down respectively. For example, if object 1, object 2, and object 3 are in the UP state and object 4 is in the DOWN state, the list is considered to be in the UP state. |
|
Step 6 |
Use one of the following commands:
Example:or |
Saves configuration changes.
|
Perform this task in the global configuration mode to create a tracked list of objects (which, in this case, are lists of interfaces or prefixes) using a threshold weight to determine the state of the list.
| Command or Action | Purpose | |
|---|---|---|
|
Step 1 |
configure Example: |
Enters mode. |
|
Step 2 |
track track-name Example: |
Enters track configuration mode.
|
|
Step 3 |
type list threshold weight Example: |
Configures a a track of type, threshold weighted list. |
|
Step 4 |
object object-name weight weight Example: |
Configures object 1, object 2 and object 3 as members of track t1 and with weights 10, 5 and 3 respectively. |
|
Step 5 |
threshold weight up weight down weight Example: |
Configures the range of weights for the objects that need to be UP or DOWN for the list to be considered UP or DOWN respectively. In this example, the list is considered to be in the DOWN state because objects 1 and 2 are in the UP state and the cumulative weight is 15 (not in the 10-5 range). |
|
Step 6 |
Use one of the following commands:
Example:or |
Saves configuration changes.
|
Use this task to enable the tracking of the return code of IP service level agreement (SLA) operations.
| Command or Action | Purpose | |||
|---|---|---|---|---|
|
Step 1 |
configure Example: |
Enters global configuration mode. |
||
|
Step 2 |
track track-name Example: |
Enters track configuration mode.
|
||
|
Step 3 |
type rtr ipsla-no reachability Example: |
Specifies the IP SLA operation ID to be tracked for reachability. Values for the ipsla-no can range from1 to 2048. |
||
|
Step 4 |
Use the commit or end command. |
commit —Saves the configuration changes and remains within the configuration session.
|
This example shows the configuration of IPSLA tracking:
RP/0/RP0/CPU0:router(config)# track track1
RP/0/RP0/CPU0:router(config-track)# type rtr 1 reachability
RP/0/RP0/CPU0:router(config-track)# delay up 5
RP/0/RP0/CPU0:router(config-track)# delay down 10
track connection100
type list boolean and
object object3 not
delay up 10
!
interface service-ipsec 23
line-protocol track connection100
!
In this example, traffic arrives from interface service-ipsec1 and exits through interface gigabitethernet0/0/0/3:
track IPSec1
type line-protocol state
interface gigabitethernet0/0/0/3
!
interface service-ipsec 1
ipv4 address 70.0.0.1 255.255.255.0
profile vrf1_profile_ipsec
line-protocol track IPSec1
tunnel source 80.0.0.1
tunnel destination 80.0.0.2
service-location preferred-active 0/0/1
!
This example displays the output from the show track command after performing the previous example:
RP/0/RP0/CPU0:router# show run track
Track IPSec1
Interface GigabitEthernet0_0_0_3 line-protocol
!
Line protocol is UP
1 change, last change 10:37:32 UTC Thu Sep 20 2007
Tracked by:
service-ipsec1
!In this example, traffic arriving from interface service-ipsec1 has its destination in network 7.0.0.0/24. This tracking procedure follows the state of the routing protocol prefix to signal when there are changes in the routing table.
track PREFIX1
type route reachability
route ipv4 7.0.0.0/24
!
interface service-ipsec 1
vrf 1
ipv4 address 70.0.0.2 255.255.255.0
profile vrf_1_ipsec
line-protocol track PREFIX1
tunnel source 80.0.0.2
tunnel destination 80.0.0.1
service-location preferred-active 0/2/0
In this example, traffic arriving from interface service-ipsec1 exits through interface gigabitethernet0/0/0/3 and interface ATM 0/2/0/0.1. The destination of the traffic is at network 7.0.0.0/24.
If either one of the interfaces or the remote network goes down, the flow of traffic must stop. To do this, we use a Boolean AND expression.
track C1
type route reachability
route ipv4 3.3.3.3/32
!
!
track C2
type route reachability
route ipv4 1.2.3.4/32
!
!
track C3
type route reachability
route ipv4 10.0.20.2/32
!
!
track C4
type route reachability
route ipv4 10.0.20.0/24
!
!
track OBJ
type list boolean and
object C1
object C2
!
!
track OBJ2
type list boolean or
object C1
object C2
!
This example shows the configuration of IPSLA based object tracking, including the ACL and IPSLA configuration:
ACL configuration:
RP/0/RP0/CPU0:router(config)# ipv4 access-list abf-track
RP/0/RP0/CPU0:router(config-ipv4-acl)# 10 permit any nexthop track track1 1.2.3.4
Object tracking configuration:
RP/0/RP0/CPU0:router(config)# track track1
RP/0/RP0/CPU0:router(config-track)# type rtr 1 reachability
RP/0/RP0/CPU0:router(config-track)# delay up 5
RP/0/RP0/CPU0:router(config-track)# delay down 10
IPSLA configuration:
RP/0/RP0/CPU0:router(config)# ipsla
RP/0/RP0/CPU0:router(config-ipsla)# operation 1
RP/0/RP0/CPU0:router(config-ipsla-op)# type icmp echo
RP/0/RP0/CPU0:router(config-ipsla-icmp-echo)# source address 2.3.4.5
RP/0/RP0/CPU0:router(config-ipsla-icmp-echo)# destination address 1.2.3.4
RP/0/RP0/CPU0:router(config-ipsla-icmp-echo)# frequency 60
RP/0/RP0/CPU0:router(config-ipsla-icmp-echo)# exit
RP/0/RP0/CPU0:router(config-ipsla-op)# exit
RP/0/RP0/CPU0:router(config-ipsla)# schedule operation 1
RP/0/RP0/CPU0:router(config-ipsla-sched)# start-time now
RP/0/RP0/CPU0:router(config-ipsla-sched)# life forever
The following sections provide references related to implementing object tracking for IPSec network security.
|
Related Topic |
Document Title |
|---|---|
|
IP SLA configuration information |
Implementing IP Service Level Agreements on System Monitoring Configuration Guide for Cisco NCS 560 Series Routers |
|
IP SLA commands |
IP Service Level Agreement Commands on System Monitoring Command Reference for Cisco NCS 5500 Series Routers and Cisco NCS 540 and NCS 560 Series Routers |
|
Standards |
Title |
|---|---|
|
No new or modified standards are supported by this feature, and support for existing standards has not been modified by this feature. |
— |
|
MIBs |
MIBs Link |
|---|---|
| — |
To locate and download MIBs using Cisco IOS XR software, use the Cisco MIB Locator found at the following URL and choose a platform under the Cisco Access Products menu: https://cfnng-stg.cisco.com/mibs. |
|
RFCs |
Title |
|---|---|
|
RFC 2401 |
Security Architecture for the Internet Protocol |
|
Description |
Link |
|---|---|
|
The Cisco Technical Support website contains thousands of pages of searchable technical content, including links to products, technologies, solutions, technical tips, and tools. Registered Cisco.com users can log in from this page to access even more content. |
Feedback