http://packetlife.net/blog/2008/jul/23/dynamic-multipoint-vpn-dmvpn/
DMVPN Phase 1:
==============
HUB:
no ip redirects
ip nhrp authentication test
ip nhrp map multicast dynamic
ip nhrp network-id 99
tunnel source GigabitEthernet0/0.100
tunnel mode gre multipoint
end
SPOKE:
ip address 10.0.0.2 255.255.255.0
ip nhrp authentication test
ip nhrp map 10.0.0.1 169.254.100.1
ip nhrp map multicast 169.254.100.1
ip nhrp network-id 99
ip nhrp nhs 10.0.0.1
tunnel source GigabitEthernet0/0.100
tunnel destination 169.254.100.1
end
DMVPN Phase 2:
==============
HUB:
interface Tunnel0
ip address 10.0.0.1 255.255.255.0
no ip redirects
no ip next-hop-self eigrp 100
no ip split-horizon eigrp 100
ip nhrp authentication test
ip nhrp map multicast dynamic
ip nhrp network-id 99
tunnel source GigabitEthernet0/0.100
tunnel mode gre multipoint
tunnel key 10000
SPOKE:
interface Tunnel0
ip address 10.0.0.2 255.255.255.0
no ip redirects
ip nhrp authentication test
ip nhrp map multicast 169.254.100.1
ip nhrp map 10.0.0.1 169.254.100.1
ip nhrp network-id 99
ip nhrp nhs 10.0.0.1
tunnel source GigabitEthernet0/0.100
tunnel mode gre multipoint
tunnel key 10000
end
DMVPN Phase 3:
==============
HUB:
interface Tunnel0
ip address 10.0.0.1 255.255.255.0
no ip redirects
no ip next-hop-self eigrp 100
no ip split-horizon eigrp 100
ip nhrp authentication test
ip nhrp map multicast dynamic
ip nhrp redirect
ip nhrp network-id 99
tunnel source GigabitEthernet0/0.100
tunnel mode gre multipoint
tunnel key 10000
SPOKE:
interface Tunnel0
ip address 10.0.0.2 255.255.255.0
no ip redirects
ip nhrp authentication test
ip nhrp map multicast 169.254.100.1
ip nhrp map 10.0.0.1 169.254.100.1
ip nhrp network-id 99
ip nhrp nhs 10.0.0.1
ip nhrp shortcut
tunnel source GigabitEthernet0/0.100
tunnel mode gre multipoint
tunnel key 10000
end
EIGRP:
=====
DMVPN phase 1:
--------------------
Hub:
-----
Spoke:
------
OSPF:
====
DMVPN phase 1:
--------------------
Hub:
-----
DMVPN Phase 1:
==============
HUB:
interface Loopback0 ip address 150.1.1.1 255.255.255.0 interface Loopback 1 ip address 10.0.1.1 255.255.255.0
interface Tunnel0
ip address 10.0.0.1 255.255.255.0no ip redirects
ip nhrp authentication test
ip nhrp map multicast dynamic
ip nhrp network-id 99
tunnel source GigabitEthernet0/0.100
tunnel mode gre multipoint
end
SPOKE:
interface Loopback0 ip address 150.1.2.2 255.255.255.0 ! interface Loopback 1 ip address 10.0.2.2 255.255.255.0 !interface Tunnel0
ip address 10.0.0.2 255.255.255.0
ip nhrp authentication test
ip nhrp map 10.0.0.1 169.254.100.1
ip nhrp map multicast 169.254.100.1
ip nhrp network-id 99
ip nhrp nhs 10.0.0.1
tunnel source GigabitEthernet0/0.100
tunnel destination 169.254.100.1
end
DMVPN Phase 2:
==============
HUB:
interface Tunnel0
ip address 10.0.0.1 255.255.255.0
no ip redirects
no ip next-hop-self eigrp 100
no ip split-horizon eigrp 100
ip nhrp authentication test
ip nhrp map multicast dynamic
ip nhrp network-id 99
tunnel source GigabitEthernet0/0.100
tunnel mode gre multipoint
tunnel key 10000
SPOKE:
interface Tunnel0
ip address 10.0.0.2 255.255.255.0
no ip redirects
ip nhrp authentication test
ip nhrp map multicast 169.254.100.1
ip nhrp map 10.0.0.1 169.254.100.1
ip nhrp network-id 99
ip nhrp nhs 10.0.0.1
tunnel source GigabitEthernet0/0.100
tunnel mode gre multipoint
tunnel key 10000
end
DMVPN Phase 3:
==============
HUB:
interface Tunnel0
ip address 10.0.0.1 255.255.255.0
no ip redirects
no ip next-hop-self eigrp 100
no ip split-horizon eigrp 100
ip nhrp authentication test
ip nhrp map multicast dynamic
ip nhrp redirect
ip nhrp network-id 99
tunnel source GigabitEthernet0/0.100
tunnel mode gre multipoint
tunnel key 10000
SPOKE:
interface Tunnel0
ip address 10.0.0.2 255.255.255.0
no ip redirects
ip nhrp authentication test
ip nhrp map multicast 169.254.100.1
ip nhrp map 10.0.0.1 169.254.100.1
ip nhrp network-id 99
ip nhrp nhs 10.0.0.1
ip nhrp shortcut
tunnel source GigabitEthernet0/0.100
tunnel mode gre multipoint
tunnel key 10000
end
EIGRP:
=====
DMVPN phase 1:
--------------------
Hub:
-----
interface Tunnel0
ip address 155.1.0.5 255.255.255.0
ip mtu 1400
ip nhrp authentication NHRPAUTH
ip nhrp map multicast dynamic
ip nhrp network-id 1
ip tcp adjust-mss 1360
tunnel source GigabitEthernet1.100
tunnel mode gre multipoint
tunnel key 2
tunnel protection ipsec profile DMVPN_PROFILE
no shutdown
!
router eigrp DMVPN
!
address-family ipv4 unicast autonomous-system 100
!
af-interface default
passive-interface
exit-af-interface
!
af-interface Tunnel0
no passive-interface
no split-horizon
exit-af-interface
!
topology base
exit-af-topology
network 150.1.0.0
network 155.1.0.0
exit-address-family
------
interface Tunnel0
ip address 155.1.0.1 255.255.255.0
ip mtu 1400
ip nhrp authentication NHRPAUTH
ip nhrp map 155.1.0.5 169.254.100.5
ip nhrp map multicast 169.254.100.5
ip nhrp network-id 1
ip nhrp nhs 155.1.0.5
ip tcp adjust-mss 1360
tunnel source GigabitEthernet1.100
tunnel destination 169.254.100.5
tunnel key 2
tunnel protection ipsec profile DMVPN_PROFILE
no shutdown
!
router eigrp DMVPN
!
address-family ipv4 unicast autonomous-system 100
!
af-interface default
passive-interface
exit-af-interface
!
af-interface Tunnel0
no passive-interface
exit-af-interface
!
topology base
exit-af-topology
network 150.1.0.0
network 155.1.0.0
exit-address-family
DMVPN Phase 2:
---------------------
No change on spoke but on hub
router eigrp DMVPN
!
address-family ipv4 unicast autonomous-system 100
!
af-interface default
passive-interface
exit-af-interface
!
af-interface Tunnel0
no next-hop-self
no passive-interface
no split-horizon
exit-af-interface
!
topology base
exit-af-topology
network 150.1.0.0
network 155.1.0.0
exit-address-family
====
DMVPN phase 1:
--------------------
Hub:
-----
interface Tunnel0
ip address 155.1.0.5 255.255.255.0
ip mtu 1400
ip nhrp authentication NHRPAUTH
ip nhrp map multicast dynamic
ip nhrp network-id 1
ip tcp adjust-mss 1360
tunnel source GigabitEthernet1.100
tunnel mode gre multipoint
tunnel key 2
tunnel protection ipsec profile DMVPN_PROFILE
ip ospf network point-to-multipoint
ip ospf hello-interval 10
no shutdown
!
router ospf 1
network 150.1.0.0 0.0.255.255 area 0
network 155.1.0.0 0.0.0.255 area 0
Spoke:
------
interface Tunnel0
ip address 155.1.0.1 255.255.255.0
ip mtu 1400
ip nhrp authentication NHRPAUTH
ip nhrp map 155.1.0.5 169.254.100.5
ip nhrp map multicast 169.254.100.5
ip nhrp network-id 1
ip nhrp nhs 155.1.0.5
ip tcp adjust-mss 1360
tunnel source GigabitEthernet1.100
tunnel destination 169.254.100.5
tunnel key 2
tunnel protection ipsec profile DMVPN_PROFILE
no shutdown
!
router ospf 1
network 150.1.0.0 0.0.255.255 area 0
network 155.1.0.0 0.0.0.255 area 0
DMVPN Phase 2:
---------------------
Hub:
-----
interface Tunnel0
ip address 155.1.0.5 255.255.255.0
ip mtu 1400
ip nhrp authentication NHRPAUTH
ip nhrp map multicast dynamic
ip nhrp network-id 1
ip tcp adjust-mss 1360
tunnel source GigabitEthernet1.100
tunnel mode gre multipoint
tunnel key 2
tunnel protection ipsec profile DMVPN_PROFILE
ip ospf 1 area 0
ip ospf priority 255
ip ospf network broadcast
no shutdown
!
Spoke:
------
interface Tunnel0
ip address 155.1.0.1 255.255.255.0
ip mtu 1400
ip nhrp authentication NHRPAUTH
ip nhrp map 155.1.0.5 169.254.100.5
ip nhrp map multicast 169.254.100.5
ip nhrp network-id 1
ip nhrp nhs 155.1.0.5
ip tcp adjust-mss 1360
tunnel source GigabitEthernet1.100
tunnel mode gre multipoint
tunnel key 2
tunnel protection ipsec profile DMVPN_PROFILE
ip ospf 1 area 0
ip ospf priority 0
ip ospf network broadcast
no shutdown
!
No comments:
Post a Comment