What Is Administrative Distance Manipulation in Networking?
Also known as: administrative distance manipulation, CCNP ENCOR, ENARSI, Cisco routing, AD manipulation
On This Page
Quick Definition
Routers can learn about the same network from multiple sources, like OSPF or EIGRP. Each source has a built-in trust score called administrative distance. By changing that score, you can force the router to prefer one source over another. It is a way to control which path traffic takes when multiple routing protocols are running.
Must Know for Exams
Administrative distance manipulation is a core topic in the Cisco CCNP Enterprise exams, specifically the 350-401 ENCOR (Enterprise Core) and the 300-410 ENARSI (Enterprise Advanced Routing and Services) exams. In the ENCOR exam, it falls under the domain of Layer 3 technologies and routing protocol fundamentals. You will be expected to know the default AD values for all major routing protocols by heart. These include 0 for connected, 1 for static, 5 for EIGRP summary, 20 for external BGP, 90 for internal EIGRP, 110 for OSPF, 120 for RIP, and 170 for external EIGRP. The exam may ask you to identify which route will be installed in the routing table given a specific scenario where multiple protocols provide the same route.
In the ENARSI exam, AD manipulation is tested in deeper detail. You may be presented with a redistribution scenario where routes from OSPF are being redistributed into EIGRP, and you need to manipulate AD to ensure that the redistributed routes do not override the native EIGRP routes. The exam will test your ability to configure the distance command with an access list to selectively change the AD for specific prefixes. Troubleshooting questions are also common. For example, you might be shown a routing table where a route is missing or points to the wrong next hop. The issue could be that the AD of a route was changed incorrectly, causing a preferred route to be overlooked. You must analyze the configuration and the routing table to identify the AD mismatch.
The exams also test the concept of floating static routes. You will need to configure a static route with an AD higher than that of the dynamic protocol, so it acts as a backup. Understanding how AD interacts with the routing table and the RIB is crucial. There are often multiple-choice questions that ask, Which route will a router choose if it receives the same network from OSPF with an AD of 110 and from EIGRP with an AD of 90? The answer is EIGRP because 90 is lower. But if the question adds that the engineer changed the AD of OSPF to 85, then OSPF would be chosen. This direct application of manipulation is a typical exam scenario. The exams also test the difference between AD and metric. Many learners confuse these two. The metric is used to compare routes within the same protocol, while AD is used to compare routes from different protocols. Questions will deliberately blur this line to test your understanding. Therefore, mastering AD manipulation is essential not only to answer direct questions but also to avoid traps in complex multi-protocol questions.
Simple Meaning
Imagine you are the manager of a busy post office. Mail comes in from three different delivery services: USPS, FedEx, and a local courier. To keep things organized, you assign each service a trust level.
USPS gets a trust level of 1, FedEx gets a trust level of 2, and the local courier gets a trust level of 3. When two services bring mail for the same address, you always go with the service that has the lower trust level number. That is exactly what a router does with administrative distance.
Each routing protocol like OSPF or EIGRP has a default trust rating. OSPF has a default administrative distance (AD) of 110. EIGRP has a default AD of 90. Since 90 is lower than 110, the router will trust the EIGRP route over the OSPF route for the same destination network.
Now, what if you want the router to prefer OSPF instead? You can manipulate the administrative distance. You would change the AD of OSPF to something lower than 90, or change the AD of EIGRP to something higher than 110.
This is called administrative distance manipulation. It is like walking up to the post office manager and saying, from now on, treat the local courier as the most trusted service. By adjusting these numbers, network engineers tell the router which source of information it should trust most when there is a conflict.
This is very useful when you have a backup link that should only be used if the primary link fails. The manipulation is done through router configuration commands. It does not change the actual path or the speed of the link.
It only changes the router's decision-making process about which route to install in its routing table. Think of it as writing new rules for a traffic cop. The cop still sees all the cars, but now they follow a different set of instructions about which car gets to go first.
Administrative distance is a number from 0 to 255. The lower the number, the more trustworthy the source. A directly connected network has an AD of 0, meaning it is the most trusted.
A static route has an AD of 1. Then come various dynamic routing protocols. If you manipulate the distance, you are essentially changing the hierarchy of trust. This is a very precise tool and must be used carefully because changing the trust can cause routing loops or black holes if not done correctly.
In a certification exam, you will be expected to know the default AD values and how to change them using the distance command in router configuration mode. It is a fundamental skill for any network engineer working with multiple routing protocols.
Full Technical Definition
Administrative distance (AD) is a numerical value between 0 and 255 that Cisco routers use to rate the trustworthiness of a routing information source. The lower the AD, the more reliable the source. By default, each routing protocol is assigned a standard AD. For example, directly connected routes have an AD of 0, static routes have an AD of 1, EIGRP summary routes have an AD of 5, external BGP has an AD of 20, internal EIGRP has an AD of 90, OSPF has an AD of 110, RIP has an AD of 120, and external EIGRP has an AD of 170. These defaults ensure that when a router learns about the same prefix from multiple protocols, it consistently selects the one with the lowest AD. Administrative distance manipulation refers to the deliberate alteration of these default values to influence route selection.
The manipulation is achieved through the distance command in Cisco IOS. The command can be applied in router configuration mode for a specific protocol. For instance, the command distance 95 under router eigrp 100 changes the AD for all EIGRP-learned routes to 95. This is a global change for that protocol. A more granular approach uses the distance prefix mask [access-list] command. This allows the network engineer to change the AD only for specific networks that match a given access list. For example, distance 130 10.0.0.0 0.255.255.255 can be used to change the AD for routes within the 10.0.0.0/8 range only. This selective manipulation is powerful in complex network topologies where different trust levels are needed for different parts of the network.
The manipulation primarily affects the Routing Information Base (RIB). When a routing protocol learns a new route, it compares the AD of that route with the AD of any existing route for the same network. If the new route has a lower AD, it replaces the old route in the RIB. If the new route has a higher AD, it is kept as a candidate but not installed. By manipulating AD, an engineer can force a protocol that normally would be less trusted to become the primary source of routing information. This is commonly used in dual-homed or multi-homed environments where different service providers connect via different routing protocols. It is also used in redistribution scenarios where routes from one protocol are injected into another. Without manipulation, the router might choose a suboptimal path based on the default AD values.
It is critical to understand that AD manipulation does not affect the metrics within a single routing protocol. For example, within OSPF, route selection is based on cost, not AD. Only when comparing routes from different protocols does AD matter. Additionally, AD is a Cisco property. Other vendors use similar concepts with different names, such as the route preference in Juniper JunOS. In multi-vendor environments, the network engineer must understand the equivalent parameters. The implementation of AD manipulation is a Layer 3 routing concept and is tested extensively in the Cisco CCNP Enterprise (350-401 ENCOR) exam, which is a core requirement for the CCNP certification. Mastery of this topic ensures the engineer can design resilient, policy-based routing architectures.
Real-Life Example
Think of a large office building with a security desk at the main entrance. Three security guards work there: Alice, Bob, and Charlie. Each guard has a different color badge that represents their authority level. Alice has a gold badge, which means authority level 1. Bob has a silver badge, authority level 2. Charlie has a bronze badge, authority level 3. When any of these guards says a visitor is allowed into the building, the front desk listens. If two guards give conflicting instructions about the same visitor, the desk always follows the guard with the lower badge number authority. For example, if Alice says allow and Charlie says deny, the desk follows Alice because her authority level 1 is lower than Charlie's 3.
Now, the building manager realizes that Bob the silver guard is actually more experienced and should be trusted more than Alice the gold guard. The manager cannot change the badges physically because they are issued by corporate. Instead, the manager changes the rules at the front desk. They create a new policy that says from now on, treat Bob as if his badge is authority level 0.5. They have effectively manipulated the authority system. Now, when Bob says allow and Alice says deny, the desk follows Bob because his new manipulated authority level is lower. This is exactly what administrative distance manipulation does. The router is the front desk. The guards are different routing protocols like OSPF, EIGRP, and BGP. Each protocol has a default authority level, such as OSPF at 110 and EIGRP at 90. By changing those numbers, the network engineer tells the router to treat one protocol as more authoritative than another, regardless of the default trust ratings. This analogy also shows the danger. If the manager makes a mistake and sets Bob's authority to zero, Bob's word will always be followed, even if he is wrong. That could let an unauthorized person into the building. Similarly, setting an administrative distance too low can cause a router to accept bad routing information and create a network outage.
Why This Term Matters
In real IT work, networks rarely run a single routing protocol. Large enterprises often run OSPF as the interior gateway protocol (IGP) and use BGP for connections to multiple internet service providers. Redistribution between these protocols is common. Without administrative distance manipulation, the router will always prefer the route with the lower default AD. But the default AD might not reflect the real-world reliability of each path. For example, an OSPF-learned route across a congested satellite link might have a default AD of 110, while an EIGRP-learned route across a fast fiber link has a default AD of 90. The router will choose the EIGRP route simply because of the lower AD, but that may be the wrong choice if the satellite link is actually more stable. By manipulating AD, the engineer can force the router to prefer the OSPF route.
Another critical use case is in failover designs. A network might use BGP as the primary path to the internet and a static default route as a backup. By default, a static route has an AD of 1, which is much lower than BGP's AD of 20. This means the static route will always be preferred, which defeats the purpose of having a primary BGP connection. The engineer must manipulate the AD of the static route to a higher value, such as 200, so that it only becomes active when the BGP route disappears. This is called floating static route and is a direct application of AD manipulation.
In cybersecurity contexts, AD manipulation can be used to steer traffic through inspection devices. By advertising a route with a lower AD from a security appliance, all traffic can be forced through that appliance for filtering. It also helps in traffic engineering and load balancing. When two protocols provide equal-cost paths, AD manipulation is not directly involved, but it can break ties when the protocols differ. Network engineers must also be aware that misconfiguration can cause routing black holes. For instance, if you change the AD of a legitimate OSPF route to a very high value, the router might prefer a less desirable route from another protocol, causing traffic to be dropped or delayed. Therefore, AD manipulation is a powerful but precise tool. It matters because it gives the engineer control over route selection in multi-protocol environments, which are the norm in modern enterprise and service provider networks. It is a fundamental skill for CCNP-level engineers who design and troubleshoot complex routing architectures.
How It Appears in Exam Questions
In certification exams, administrative distance manipulation appears in several distinct question formats. The most common is the direct knowledge question. This type asks you to recall the default AD for a specific protocol. For example, What is the administrative distance of OSPF? The answer is 110. Another variant is the comparative question: A router receives the same route from OSPF (AD 110) and a static route (AD 1). Which route will be installed in the routing table? The answer is the static route because 1 is lower. These questions test your memorization of the default values.
Scenario-based questions are more complex. You are given a network topology with multiple routers running different protocols. The scenario might describe that the network engineer wants to ensure that a specific path is preferred, and you need to choose the correct configuration to manipulate the AD. For example, a router is running OSPF and EIGRP. The engineer wants the OSPF route to be preferred for a specific network. The correct answer would be to use the distance command under router ospf to set a lower AD, such as 85, for that network only. The question might provide a configuration snippet with the distance command and an access list, and you must identify which access list entry matches the intended network.
Troubleshooting questions present a problem. The routing table shows an unexpected path. You are given the running configuration of the router. You might see that a distance command has been applied incorrectly. For instance, the engineer used the command distance 200 under router eigrp, which made all EIGRP routes have a higher AD than OSPF. As a result, the router chooses the OSPF path even though the EIGRP path was intended to be primary. You must identify the misconfiguration and propose the fix. These questions require you to analyze the effect of the AD change on the routing table.
Design questions ask you to choose the best approach for a specific requirement. For example, a company has two internet connections. One is a fast fiber link learned via eBGP, and the other is a slower DSL link with a static default route. The requirement is that the fiber link should be primary. You need to configure a floating static route. The question might give you four configuration options, and you must select the one that sets the AD of the static route to a value higher than 20 (eBGP default AD), such as 25 or 200. These questions test your practical application of manipulation.
Finally, there are multi-choice questions with multiple correct answers. For instance, Which of the following can affect the administrative distance of a route? Options may include the distance command, the redistribution process, the network statement, and the metric. The correct answers are the distance command and, in some cases, the redistribution process can indirectly affect AD if the route type changes. These questions require a deep understanding of how AD is set and changed.
Study enarsi
Test your understanding with exam-style practice questions.
Example Scenario
A small company has two routers connected to the internet. Router A is connected to ISP1 via a fiber optic link, and the route to the internet is learned through BGP. Router B is connected to ISP2 via a cable modem, and a default static route is configured on Router B pointing to the cable modem.
The company wants all internet traffic to use the fiber link (ISP1) as the primary path. If the fiber link fails, traffic should automatically switch to the cable modem link. The network engineer knows that BGP has a default administrative distance of 20, and a static route has a default AD of 1.
If the engineer simply configures the static route with the default AD, the router will always prefer the static route over the BGP route, even when the fiber link is working. That is not what the company wants. To solve this, the engineer uses administrative distance manipulation.
They configure the static route with an administrative distance of 200, which is much higher than BGP's 20. This is called a floating static route. Now, when the fiber link is up, the router installs the BGP route in the routing table because its AD of 20 is lower than the static route's AD of 200.
If the fiber link goes down, the BGP route is removed from the routing table. The router then looks at the static route. Since it is the only remaining route, the router installs it, even though its AD is high, because there is no other route with a lower AD.
Traffic then flows through the cable modem until the fiber link is restored. This is a clean, automated failover solution. The manipulation here is simply changing the default AD of the static route to a higher number.
The engineer used the command ip route 0.0.0.0 0.0.0.0 192.168.2.1 200. The 200 at the end is the administrative distance. This is a classic exam scenario and a common real-world configuration.
Common Mistakes
Confusing administrative distance with metric.
Administrative distance is used to compare routes from different routing protocols, whereas metric is used to compare routes from the same protocol. Thinking they are the same leads to incorrect route selection analysis.
Remember that AD is about trust between protocols, metric is about cost within a protocol. When choosing between OSPF and EIGRP, look at AD. When choosing between two OSPF paths, look at cost.
Thinking a lower AD always means a better or faster route.
AD only indicates trustworthiness, not speed or bandwidth. A route with a low AD can be over a slow satellite link, while a route with a high AD can be over fast fiber. The router picks the low AD route even if it is slow, unless you manipulate AD.
Understand that AD is a policy tool, not a performance indicator. Use it to enforce path preference based on your design, not to reflect physical speed.
Forgetting the default AD values for common protocols.
Exams require you to know the default AD values. If you do not know that OSPF is 110 and EIGRP is 90, you cannot answer comparative route selection questions.
Memorize the key default values: connected 0, static 1, eBGP 20, EIGRP 90, OSPF 110, RIP 120, external EIGRP 170. Create flashcards or a mnemonic.
Applying the distance command without an access list when only specific routes need manipulation.
Using distance under router configuration without an access list changes the AD for all routes learned by that protocol. This can unintentionally break routing for other networks.
Use the distance prefix mask [access-list] form of the command to change AD only for the desired networks. Always plan the scope of the change carefully.
Believing that changing the AD changes the metric or the path within the same protocol.
AD does not affect OSPF cost, EIGRP composite metric, or any intra-protocol metric. It only affects which route is chosen when the same prefix is learned from different protocols.
Keep AD and intra-protocol metrics separate. If you want to change the path within OSPF, adjust cost. If you want to choose between OSPF and another protocol, adjust AD.
Exam Trap — Don't Get Fooled
An exam question shows a router receiving the same route from OSPF (AD 110) and from a static route (AD 1). The question asks which route is installed, and the options include the OSPF route because it is dynamic and more flexible. Many learners instinctively choose OSPF because they think dynamic protocols are always preferred.
Always fall back on the numbers. The router does not have intuition. It uses the AD value. A static route has an AD of 1, which is lower than OSPF's 110. Therefore, the static route is installed.
Do not let the word dynamic fool you. Memorize that static routes are considered highly trustworthy because they are manually configured by a human. In the router's eyes, a human is more trustworthy than a protocol's calculation.
Commonly Confused With
Administrative distance compares trust between different routing protocols. Metric compares cost within a single protocol. For example, OSPF uses cost as its metric, while EIGRP uses a composite metric based on bandwidth and delay. Changing AD says nothing about cost and vice versa.
If you have two OSPF paths to the same network, you change the cost to prefer one. If you have an OSPF path and an EIGRP path, you change the AD to prefer one. They operate at different levels.
Route redistribution is the process of taking routes from one protocol and injecting them into another. AD manipulation is about changing the trust value after those routes are learned. Redistribution does not automatically change AD; the redistributed routes inherit the AD of the target protocol unless manually changed.
Redistributing OSPF routes into EIGRP gives them the AD of external EIGRP (170). You can then manipulate that AD to 95 if you want them to be preferred over internal EIGRP routes.
A prefix list is a tool used to filter routes based on the network address and prefix length. AD manipulation does not filter routes; it only changes the trust level of routes that are already accepted. A prefix list can be used together with AD manipulation, but they are different functions.
You can use a prefix list to deny certain routes from being learned. You can then use AD manipulation to change the trust level of the routes that were permitted. One filters, the other adjusts priority.
Distance vector and link state are types of routing protocols that use different algorithms to compute routes. AD is a separate concept that applies to both types. AD does not care whether the protocol is distance vector (like RIP) or link state (like OSPF). It only cares about the trust value assigned.
RIP is a distance vector protocol with AD 120. OSPF is a link state protocol with AD 110. The router prefers OSPF because of the lower AD, not because of the type of protocol.
Step-by-Step Breakdown
Identify the routing protocols in use
First, determine which routing protocols are running on the router. This could be OSPF, EIGRP, BGP, RIP, or static routes. Each has a default administrative distance. Write down the default values because you will need to compare them later.
Examine the routing table for overlapping prefixes
Look for any destination network that appears in the routing table from more than one source. For example, the router may learn 10.0.0.0/8 from both OSPF and EIGRP. These overlapping prefixes are the candidates for AD-based selection.
Compare the default administrative distances
For each overlapping prefix, compare the default ADs of the sources. The route with the lowest AD will be installed in the routing table. For example, if EIGRP gives AD 90 and OSPF gives AD 110, EIGRP wins. This step reveals which route is currently preferred.
Determine the desired route preference
Based on your network design, decide which source you want the router to prefer. For example, you might want OSPF to be preferred over EIGRP because the OSPF path is more stable. This desire is the reason for manipulation.
Configure the distance command to change AD
Enter router configuration mode for the protocol you want to manipulate. Use the distance command. For a global change, use distance new-ad. For a selective change, use distance new-ad source-ip wildcard-mask [access-list]. This command instructs the router to replace the default AD with your chosen value for matching routes.
Verify the change in the routing table
Use the show ip route command to check the routing table. Confirm that the route from the manipulated protocol now has the new AD value. Also verify that the previously preferred route has been removed or is now listed with a higher AD. This step confirms the manipulation worked.
Test failover and reconvergence
Simulate a failure of the primary path to ensure the router falls back to the secondary path correctly. For example, shut down the interface that provides the primary route. Verify that the backup route with the higher AD is now installed. Then restore the interface and confirm the primary route returns. This step validates the overall design.
Practical Mini-Lesson
Administrative distance manipulation is a configuration technique that every Cisco network engineer must master, especially when working toward CCNP certification. The concept is straightforward on the surface but carries significant nuance in practice. At its core, you are changing the trust score that a router assigns to a routing protocol. This score, a number from 0 to 255, determines which route gets installed in the routing table when multiple protocols advertise the same prefix. The lower the score, the more the router trusts that source. The default scores are designed to give a sensible hierarchy, but real-world networks often require deviation from that hierarchy.
To implement AD manipulation, you use the distance command. The basic syntax under router configuration mode is distance AD-value. For example, router ospf 1 and then distance 95 changes the AD for all OSPF-learned routes to 95. This makes OSPF routes more preferred than EIGRP internal routes, which have a default AD of 90. But this is a global change. It affects every route learned by OSPF. That might be fine in a simple network, but in a complex network, you often need to change the AD for only a specific set of prefixes. For that, you use the extended syntax: distance AD-value source-ip wildcard-mask [access-list]. The source-ip and wildcard-mask define which router the update came from, and the access list matches the specific prefix. This gives you surgical precision. You can make a particular network learned from a particular neighbor more or less trustworthy without affecting other routes.
What can go wrong? The most common problem is creating a routing loop. Imagine you have two routers that both run OSPF and EIGRP, and they redistribute routes into each other. If you manipulate AD on one router without considering the effect on the other, you could cause a situation where Router A prefers an OSPF route to a network, and Router B prefers an EIGRP route to the same network. If they both think they have the best path, traffic can ping-pong between them. Another problem is creating a black hole. If you set the AD of a valid route too high, the router will ignore it in favor of a less reliable path, potentially dropping traffic. Always test changes in a lab or during a maintenance window.
From a broader IT perspective, AD manipulation fits into the larger discipline of traffic engineering. It works alongside route maps, prefix lists, and policy-based routing to give you complete control over traffic flow. In service provider networks, AD manipulation is used to influence which routes are preferred from different peers. In enterprise networks, it is the foundation of floating static routes for backup connectivity. Professionals working with Cisco devices should also be aware that the show ip route command displays the AD of each route. Regularly reviewing this output helps catch unexpected changes. In summary, AD manipulation is not just an exam topic, it is a daily tool for ensuring that your network behaves exactly as you intend, even when multiple routing protocols are at play.
Memory Tip
Think of AD as Age of the source: lower number means older and more trusted. Static route is like an old handwritten note from the boss AD 1, very trusted. OSPF is a newer email AD 110, less trusted. The router always reads the oldest mail first.
Covered in These Exams
Related Glossary Terms
802.1Q is the networking standard that allows multiple virtual LANs (VLANs) to share a single physical network link by tagging Ethernet frames with VLAN identification information.
802.1X is a network access control standard that authenticates devices before they are allowed to connect to a wired or wireless network.
An A record is a DNS record that maps a domain name to the IPv4 address of the server hosting that domain.
Two-factor authentication (2FA) is a security method that requires two different types of proof before granting access to an account or system.
5G is the fifth generation of cellular network technology, designed to deliver faster speeds, lower latency, and support for many more connected devices than previous generations.
Frequently Asked Questions
Can I change the administrative distance of a directly connected route?
No, directly connected routes always have an AD of 0, and this cannot be changed. They are the most trusted source because the router has a directly configured interface on that network.
What happens if two protocols have the same administrative distance?
If two protocols provide the same route and have the same AD, the router will prefer the one with the lower metric. If the metrics are also equal, the router installs the route from the protocol that was learned first.
Does administrative distance manipulation affect routing loops?
Yes, improper manipulation can cause routing loops, especially in redistribution scenarios. For example, if you lower the AD of redistributed routes, they might override native routes and cause a loop.
Is administrative distance a Cisco proprietary concept?
Cisco uses the term administrative distance, but other vendors have similar concepts. For example, Juniper uses route preference. The idea of weighting routing sources is universal.
Can I change AD for a single route instead of all routes from a protocol?
Yes, use the distance command with an access list. This allows you to change the AD for specific prefixes that match the access list, leaving other routes with the default AD.
Does changing the AD affect how the router forwards packets?
Only indirectly. Changing AD affects which route is installed in the routing table. The forwarding table uses that route. So if the installed route changes, the forwarding path changes.
What is the AD range and what do the extremes mean?
AD ranges from 0 to 255. 0 is the most trusted, typically reserved for directly connected routes. 255 means the route is considered untrustworthy and will not be installed in the routing table.
Do I need to restart the router after changing AD?
No, the change takes effect immediately. The router will recompute the best routes and update the routing table instantly.
Summary
Administrative distance manipulation is a core routing concept that gives network engineers precise control over route selection when multiple routing protocols are in use. The administrative distance is a trust rating from 0 to 255 that a router assigns to each source of routing information. By default, protocols like OSPF, EIGRP, BGP, and static routes have standard AD values that determine which route is preferred when the same destination is learned from different sources.
Manipulation involves using the distance command in Cisco IOS to change these values, either globally or for specific prefixes using an access list. This technique is essential for implementing policy-based routing, floating static routes for backup connectivity, and managing route preference in multi-homed and redistribution scenarios. In certification exams, particularly the Cisco CCNP ENCOR and ENARSI exams, you must know default AD values, understand how to configure the distance command, and be able to troubleshoot misconfigurations.
Common mistakes include confusing AD with metric, forgetting default values, and applying global changes when selective manipulation is needed. Remember that AD does not measure speed or bandwidth, it only measures trust. When used correctly, AD manipulation is a powerful tool for building resilient, predictable networks.
Always verify your changes with show ip route and test failover behavior. This topic is not just exam material, it is a practical skill used daily in enterprise and service provider environments.