routingnetworkingnetwork-plusIntermediate21 min read

What Is Intermediate System to Intermediate System in Networking?

Also known as: Intermediate System to Intermediate System, IS-IS protocol, routing protocol, link-state, Network+ exam

Reviewed byJohnson Ajibi· Senior Network & Security Engineer · MSc IT Security
On This Page

Quick Definition

Intermediate System to Intermediate System, or IS-IS, is a routing protocol that routers use to talk to each other and share information about how to reach different parts of a network. It works like a GPS navigation system that constantly updates roads and traffic conditions so that data packets always take the fastest or most reliable route. IS-IS is especially common in large ISP and carrier networks because it is stable, efficient, and scales very well to thousands of routers.

Must Know for Exams

On the CompTIA Network+ exam, IS-IS appears in the networking fundamentals and routing protocols sections. The exam objectives list IS-IS as one of the routing protocols you need to understand, along with OSPF, EIGRP, and BGP. You will not be required to configure IS-IS, but you need to know what it is, how it differs from other protocols, and where it is used.

Network+ exam questions about IS-IS typically focus on its characteristics: it is a link-state protocol, it uses the Dijkstra algorithm, it is commonly used in ISP networks, and it can route multiple protocols. You may also encounter questions that ask you to compare IS-IS with OSPF, since both are link-state protocols but differ in addressing and hierarchy. For example, a question might ask which protocol uses a two-level hierarchy and runs directly over Layer 2. The correct answer would be IS-IS.

On more advanced exams like the Cisco CCNA or CCNP, IS-IS appears more deeply. In CCNA, it is covered in the routing section, and you may be asked to interpret show commands and identify IS-IS neighbor states. In CCNP, you might need to troubleshoot IS-IS adjacency issues or configure IS-IS in a lab scenario. Understanding IS-IS metrics, area types, and authentication is important at that level.

For the Juniper JNCIA exam, IS-IS is a core topic because Juniper devices use IS-IS as a primary IGP. You will need to know the configuration commands, show commands, and how to verify neighbor relationships. The exam also covers IS-IS levels, metric calculation, and route redistribution.

Overall, IS-IS is a medium-frequency topic on Network+ but a high-frequency topic on service-provider-focused certifications. Learners should focus on the key attributes, the difference between Level 1 and Level 2, and its role in large networks.

Simple Meaning

Think of a massive post office network that needs to deliver letters across an entire country. To do this efficiently, the post offices need to know how to route letters from one city to another, using highways, local roads, and bridges. The post offices send each other updates about which routes are open or closed, which highways are faster, and which roads are under construction. This way, when a letter arrives, the post office can decide the best way to get it to its destination.

Intermediate System to Intermediate System, or IS-IS, works exactly like this. It is a language that routers use to exchange maps of the network. Each router tells its neighbors about all the destinations it knows about and how far away they are. Over time, every router builds a complete map of the entire network, much like every post office would have a full map of roads and sorting centers.

IS-IS is different from some other routing protocols because it does not use IP addresses to communicate between routers. Instead, it uses its own addressing system, which makes it very flexible and secure. It was originally designed for a network architecture called OSI, but it was adapted to work with TCP/IP networks. Today, it is widely used in large internet service provider backbones, data center networks, and some large corporate networks because it can handle thousands of routers and thousands of routes without losing performance.

When a router receives a packet, it looks at the destination address, checks its map, and finds the best path. If a link breaks or a new router is added, IS-IS quickly recalculates the paths and updates all routers in the area. This makes the network resilient and self-healing.

Full Technical Definition

IS-IS is a link-state routing protocol that operates at Layer 2 of the OSI model, the data link layer. It was originally defined in ISO 10589 for routing in OSI Connectionless Network Service environments, but it was later extended to support IP routing via RFC 1195, which added support for TCP/IP. Unlike OSPF, which is an IP-based routing protocol, IS-IS runs directly over the data link layer using its own packet format, making it protocol-independent and able to route both IP and CLNP traffic.

IS-IS uses a shortest path first algorithm, specifically Dijkstra’s algorithm, to compute the best routes. Each router, called an Intermediate System in OSI terminology, builds a link-state database that contains a complete map of the network topology. Routers flood link-state packets to all other routers in the area, ensuring that every router has the same view of the network. This flooding process is reliable and uses sequence numbers to prevent loops.

IS-IS divides the network into areas. There are Level 1 routers that know the topology within their area, Level 2 routers that know the topology between areas, and Level 1/2 routers that act as border routers connecting areas. This hierarchical structure reduces the size of the link-state database and makes the protocol highly scalable. In large service provider networks with thousands of routers, IS-IS is often preferred over OSPF because it handles the two-level hierarchy more efficiently and converges faster after a topology change.

IS-IS uses a metric called link cost, which defaults to 10 on all interfaces unless manually configured. The path cost to a destination is the sum of the costs of all links along the path. The router selects the path with the lowest total cost. The protocol supports variable-length subnet masking, authentication for security, and fast convergence using features like incremental SPF and prefix independent convergence.

In modern data centers, IS-IS is also used as the routing protocol for fabric networks, such as in Cisco’s Application Centric Infrastructure or in Juniper’s data center designs. It is known for being very stable, with proven performance in networks that require five nines availability.

Real-Life Example

Imagine a large office building with many floors, each floor containing multiple departments. The building has a mail room on the ground floor that needs to deliver interoffice mail throughout the building. The mail room staff have a master directory that lists every department and its exact location, including floor number, wing, and room number.

Now, suppose a new department opens on the 5th floor. The facilities manager sends an email to the mail room updating the directory. The mail room then sends a note to every mail cart driver in the building, telling them about the new department and its location. Each mail cart driver updates their own map. From that point on, when a letter arrives for the new department, the driver knows exactly which elevator to take and which hallway to follow.

This is very similar to how IS-IS works. The routers are like the mail cart drivers. Each router starts by knowing only its directly connected neighbors, just like a driver knowing only the floor they are on. As routers exchange link-state advertisements, they learn about all the other routers and networks in the area, building a complete map. When a new network is added, the router that connects to it sends out a link-state update, and all other routers update their maps. The result is that every router knows the shortest path to every destination, just like every mail cart driver knows the fastest route to deliver mail anywhere in the building.

Also similar to IS-IS, if a hallway is blocked due to construction, the mail room sends an update, and drivers recalculate their routes. In IS-IS, if a link goes down, the router detects the failure and floods the information so all routers update their routing tables and find alternative paths.

Why This Term Matters

IS-IS matters because it is the routing protocol of choice for many of the largest networks in the world, including tier-1 ISPs, large data centers, and backbone networks. When you use the internet, your traffic is likely passing through routers that run IS-IS at some point. Understanding IS-IS helps network engineers design, troubleshoot, and optimize these critical infrastructures.

One key reason IS-IS is so important is its scalability. In networks with thousands of routers and tens of thousands of routes, IS-IS performs better and converges faster than many other protocols. It uses a two-level hierarchy that keeps routing tables smaller and update traffic contained within areas. This means that a change in one area does not affect the entire network, which is essential for uptime and stability.

IS-IS is also very flexible. Because it runs directly on the data link layer, it can route both IPv4 and IPv6 without needing separate configurations for each protocol. This makes it a popular choice for dual-stack networks that are transitioning to IPv6. It also supports traffic engineering extensions, allowing operators to control traffic flows across the network for optimal use of bandwidth.

For professionals working in service provider or large enterprise environments, knowing IS-IS is not just an academic exercise. It is a practical skill needed to configure routers, interpret routing tables, diagnose routing loops, plan network expansions, and ensure business continuity. Even if you do not work with IS-IS directly, understanding it gives you a deeper appreciation for how the internet keeps working even when links fail or traffic spikes.

How It Appears in Exam Questions

On multiple-choice exams like Network+, you will see questions such as: Which routing protocol operates at Layer 2 and uses the Dijkstra algorithm? or Which protocol is commonly used in large ISP networks and supports both IPv4 and IPv6? These questions test your ability to recall characteristics and differentiate IS-IS from OSPF, EIGRP, or RIP.

Scenario-based questions are also common. For example: A network engineer is designing a backbone for a service provider with 500 routers. The network must support both IPv4 and IPv6 and converge quickly after a link failure. Which routing protocol is best suited? The correct answer would be IS-IS, because it scales well, supports dual-stack, and is commonly used in ISP backbones.

Troubleshooting questions may present partial output from a show command. For example: You see a list of IS-IS neighbors with state UP but some are listed as Level 2 only. Why would a router be Level 2 only? The answer: The router is configured as a Level 2 router and does not participate in intra-area routing.

Configuration questions require you to recognize the correct syntax. For instance: Which command configures IS-IS on a Cisco interface? The answer could be ip router isis. You may also see questions about the IS-IS area format, which uses a 1-byte area ID followed by a 6-byte system ID.

Architecture questions may ask about IS-IS areas and levels. For example: What is the role of a Level 1/2 router in IS-IS? The answer: It connects Level 1 areas to the Level 2 backbone. Understanding the difference between Level 1 and Level 2 is critical for these questions.

Some advanced questions may involve metric calculation. For instance: If all interfaces have a default metric of 10, what is the total cost to a destination four hops away? The answer is 40. These questions test your understanding of how IS-IS builds the shortest path tree.

Practise Intermediate System to Intermediate System Questions

Test your understanding with exam-style practice questions.

Practise

Example Scenario

Company X is a large internet service provider with 200 routers spread across three regions: North, Central, and South. The network carries both IPv4 and IPv6 traffic for thousands of customers. The network team needs a routing protocol that can handle frequent topology changes, such as new routers being added or fiber cuts, without causing downtime.

The team decides to use IS-IS. They configure each region as a separate Level 1 area. The routers within each area exchange detailed topology information and know all the routes inside their region. For inter-region traffic, they deploy Level 2 routers that connect the three areas. A few routers in each area are configured as Level 1/2 routers to act as gateways between the area and the backbone.

One day, a construction crew accidentally cuts a fiber optic cable in the Central region, disconnecting two key routers. Within seconds, the routers on either side of the cut detect the failure. They immediately flood link-state packets to all other routers in the Central area, updating the topology database. Each router runs the Dijkstra algorithm and recalculates the best paths, now routing traffic around the damaged cable. The Level 2 backbone also learns about the change indirectly, because the Level 1/2 routers propagate a summary route change. The entire network adjusts in under a second, and customers experience no noticeable interruption. This is a real example of how IS-IS provides fast convergence and resilience in a real ISP environment.

Common Mistakes

Thinking that IS-IS and OSPF are the same protocol just with different names.

While both are link-state protocols using the Dijkstra algorithm, they have fundamental differences. IS-IS runs directly over Layer 2 and uses OSI addressing, while OSPF runs over IP and uses router IDs based on IP addresses. Their area structures are also different: OSPF uses a backbone area 0 with a single two-level hierarchy, while IS-IS uses Level 1 and Level 2 with flexible boundaries.

Remember: IS-IS is to OSI as OSPF is to IP. IS-IS can route IP but does not depend on IP for its own operation. OSPF is entirely IP-based.

Assuming IS-IS is obsolete or only used in legacy networks.

IS-IS is not obsolete. It is widely used in modern service provider networks, data center fabrics, and even in some large enterprise networks. It is a very stable and scalable protocol that has been updated with extensions for IPv6, traffic engineering, and fast convergence.

IS-IS is actively used and supported by all major vendors. It is especially relevant in carrier-grade and data center networks.

Confusing IS-IS with BGP because both are used in large networks.

BGP is an exterior gateway protocol used to route between autonomous systems, like between different ISPs. IS-IS is an interior gateway protocol used inside a single autonomous system. They serve completely different purposes.

Think of IS-IS as the internal GPS for your company's network, while BGP is the protocol that talks to other companies' networks.

Believing that IS-IS only works with OSI protocols and not with TCP/IP.

IS-IS was originally designed for OSI, but RFC 1195 extended it to support IP routing. Modern IS-IS implementations handle IPv4 and IPv6 natively. It is a common misconception that IS-IS is not compatible with IP.

IS-IS can route IP traffic as easily as OSPF can. It is a multi-protocol routing protocol that supports both IP and OSI traffic.

Mistaking IS-IS network types for OSPF network types (e.g., broadcast, point-to-point).

IS-IS uses its own terminology for network types: broadcast networks (like Ethernet) and point-to-point networks (like serial links). However, the logic is similar: on broadcast networks, a designated intermediate system is elected to reduce flooding, similar to OSPF's designated router.

Learn the IS-IS terms: DIS (Designated Intermediate System) instead of DR. The function is similar but the name is different.

Exam Trap — Don't Get Fooled

An exam question says: Which routing protocol does not use IP addresses to communicate between routers and is used in large ISP networks? The options include OSPF, EIGRP, BGP, and IS-IS. The learner may pick OSPF because it is a well-known link-state protocol.

Memorize that IS-IS is the only routing protocol that runs directly on Layer 2 and uses its own addressing scheme. If the question mentions not using IP for router communication, the answer is IS-IS. Practice distinguishing between OSPF and IS-IS by focusing on their Layer of operation.

Commonly Confused With

Intermediate System to Intermediate SystemvsOSPF

Both IS-IS and OSPF are link-state protocols that use Dijkstra’s algorithm, but OSPF operates at Layer 3 (IP) and uses IP addresses for router IDs, while IS-IS operates at Layer 2 and uses OSI addresses. OSPF requires an IP network for neighbor discovery; IS-IS does not.

In OSPF, you configure the router ID as an IP address. In IS-IS, you configure a system ID that is part of an OSI address, not an IP address.

Intermediate System to Intermediate SystemvsEIGRP

EIGRP is a Cisco proprietary distance-vector protocol that uses the Diffusing Update Algorithm, while IS-IS is an open standard link-state protocol. EIGRP does not have a two-level hierarchy like IS-IS, and it does not maintain a complete topology map.

EIGRP only knows the best route and a backup route to each destination, while IS-IS knows the entire network topology and can compute multiple alternative paths.

Intermediate System to Intermediate SystemvsBGP

BGP is a path-vector protocol used for routing between autonomous systems on the internet, while IS-IS is used inside a single autonomous system. BGP uses policies and attributes, while IS-IS uses link costs and shortest path calculations.

IS-IS is like the internal road network within a city, while BGP is like the interstate highway system connecting different cities.

Intermediate System to Intermediate SystemvsRIP

RIP is a distance-vector protocol that uses hop count as its only metric, with a maximum of 15 hops, while IS-IS uses link costs and can scale to very large networks. RIP converges much more slowly and has poor scalability compared to IS-IS.

RIP is suitable for a small network like a small office, while IS-IS is designed for networks with hundreds or thousands of routers.

Step-by-Step Breakdown

1

Initialization

When a router powered on runs IS-IS for the first time, it starts in an unconfigured state. The network administrator assigns a system ID and area ID to the router. The router then activates IS-IS on the interfaces that need to participate. It also sets the level (Level 1, Level 2, or both) for each interface.

2

Neighbor Discovery

The router sends hello packets on all enabled interfaces. These packets contain the router's system ID, area ID, and level information. Neighboring routers receive these packets and reply with their own hello packets. Both routers check the received information to ensure they belong to the same area if they are Level 1. If everything matches, an adjacency is formed and the neighbor state becomes UP.

3

Link-State Database Synchronization

Once adjacencies are established, the routers exchange link-state packets. Each router sends a complete set of its own link-state information to its neighbors. The neighbors then forward this information to their other neighbors, a process called flooding. Eventually, every router in the area receives the same set of link-state packets and builds an identical link-state database.

4

Shortest Path First Calculation

Each router uses Dijkstra’s algorithm on its link-state database to compute a shortest path tree, with itself as the root. The algorithm examines all possible paths to each destination, summing the link costs along each path. The path with the lowest total cost becomes the best route. The router then installs these best routes into its routing table.

5

Route Maintenance and Convergence

The network is constantly monitored. If a link goes down, a new link comes up, or a neighbor router fails, the detecting router immediately generates new link-state packets that reflect the change. These packets are flooded to all other routers. Upon receiving the update, each router recalculates its shortest path tree and updates its routing table. This process is called convergence and typically completes in sub-second time in well-tuned networks.

Practical Mini-Lesson

IS-IS is a protocol that every network engineer working with service providers or large data centers should know. In practice, you will configure IS-IS on a router by first enabling the protocol globally using a command like router isis, then specifying the NET (Network Entity Title) which uniquely identifies the router. The NET includes the area ID and system ID, for example: 49.0001.1921.6800.1001.00. The area ID 49.0001 tells the router which Level 1 area it belongs to.

Next, you need to enable IS-IS on each interface that should participate. On a Cisco router, the command is ip router isis (or clns router isis for CLNP). You may also set the interface type (point-to-point or broadcast) and the metric. By default, the metric on each interface is 10. You can change it to influence path selection, for example setting a higher metric on slower links to discourage traffic.

Verification is done using commands like show isis neighbors, show isis database, and show ip route isis. The neighbor output shows which routers are adjacent, their state, and the level. The database output shows the link-state database, which you can inspect for missing or corrupt entries. If you notice a missing route, you can check if the neighbor adjacency is down or if the link-state database is not synchronized.

Common issues include mismatched area IDs between Level 1 neighbors, authentication mismatches, or level mismatches where one router expects Level 1 but the other is configured as Level 2. Another issue is the use of different metric styles: narrow metrics (old style, up to 63) versus wide metrics (new style, up to millions). If two routers use different metric styles, they cannot exchange routes properly. The solution is to ensure all routers in the domain use the same metric style.

In production, IS-IS is often tuned for fast convergence. Features like incremental SPF (iSPF), prefix independent convergence, and fast hello timers are used to achieve sub-50 millisecond convergence. Redistribution into IS-IS from other protocols like OSPF or BGP is also common, but careful planning is needed to avoid routing loops.

IS-IS connects to broader IT concepts such as network design, redundancy, and Quality of Service. For example, you can use IS-IS to implement load sharing across multiple equal-cost paths, or you can manipulate metrics to engineer traffic away from congested links. Understanding IS-IS gives you deep insight into how large networks operate, which is a valuable skill for any networking professional.

Memory Tip

IS-IS: I See It Simple. It uses System IDs (not IPs) and runs at Layer 2, while OSPF uses Router IDs (IPs) and runs at Layer 3.

Covered in These Exams

Current Exam Context

Current exam versions that test this topic — use these objectives when studying.

Related Glossary Terms

Frequently Asked Questions

Is IS-IS only used in ISP networks?

IS-IS is most common in ISP and large data center networks, but it can be used in any network that needs a scalable and stable interior routing protocol. Some large enterprises also use it.

Does IS-IS work with IPv6?

Yes, IS-IS supports IPv6 through extensions defined in RFC 5308. It can carry both IPv4 and IPv6 routes simultaneously, which makes it a good choice for dual-stack networks.

Which is faster, OSPF or IS-IS?

Both can converge very quickly, often in under a second. IS-IS is often considered slightly more efficient in very large networks because of its simpler packet format and two-level hierarchy, but performance differences are usually minor.

Do I need to know IS-IS for Network+?

Yes, the CompTIA Network+ exam objectives include IS-IS as one of the routing protocols you need to understand. You should know its characteristics and how it compares to OSPF.

How does IS-IS handle authentication?

IS-IS supports authentication for hello packets, link-state packets, and sequence number packets. It uses a simple password or MD5 HMAC. The authentication type and key must match on neighboring routers or they will not form an adjacency.

What is the difference between Level 1 and Level 2 in IS-IS?

Level 1 routers know the topology of their own area only and rely on Level 1/2 routers to reach other areas. Level 2 routers know the topology between areas and form a backbone. Level 1/2 routers connect the two levels.

Summary

Intermediate System to Intermediate System (IS-IS) is a link-state routing protocol that operates at the data link layer and uses the Dijkstra algorithm to compute shortest paths. It is widely used in large service provider networks, data center fabrics, and enterprise backbones because of its scalability, fast convergence, and ability to route both IPv4 and IPv6 without relying on IP for its own operation. Unlike OSPF, which runs over IP and uses IP addresses for router identification, IS-IS uses OSI addressing and a two-level hierarchical structure that controls routing updates and reduces the size of the link-state database.

For certification exams, especially Network+ and more advanced Cisco and Juniper exams, you should remember that IS-IS is a link-state protocol, it uses hello packets for neighbor discovery, it supports areas through Level 1 and Level 2 routers, and it is particularly suited for environments where stability and scalability are critical. Common mistakes include confusing IS-IS with OSPF or thinking it is obsolete. Understanding IS-IS gives you a strong foundation in how the internet's biggest networks stay connected and resilient.