Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2107
Views
0
Helpful
5
Replies

Bridging over GRE Tunnel

jsteffensen
Level 1
Level 1

‎05-12-2004 04:48 AM - edited ‎03-02-2019 03:39 PM

Hi Everybody. Where to post this question? I guess I'm not all thet wrong in this forum.

First of all; Ive noticed that bridge-group on tunnel interfaces is a valid command, but is "not supported".

But since we would like to replace Bridging over ISDN (yes you read right.....) with a Bridging over Internet using tunneling, and are not allowed to change IP's on the two sites, we must try to solve the problem this way

I've have built up a LAB, to collect a bit experience with the new config.

And have come to the conclution that ARP request and answers on ARP request are not passed through the tunnel intetrface.

By defineing static ARP on the computers on each side of the tunnel, access over the bridged tunnel is working perfectly... but its not really the ream situation...

Does anyone experience on this "unsupported" area?

BTW: Here is the Router configs:

RouterA:

RouterA#SH RUN

Building configuration...

Current configuration : 745 bytes

!

version 12.3

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

hostname RouterA

!

boot-start-marker

boot-end-marker

!

enable secret 5 %%%%%%%%%%%%%%%%

!

no aaa new-model

ip subnet-zero

ip cef

!

!

!

!

!

bridge irb

!

!

interface Tunnel1

no ip address

tunnel source FastEthernet0/0

tunnel destination 10.41.1.1

bridge-group 1

!

interface FastEthernet0/0

ip address 10.41.1.4 255.255.255.0

duplex auto

speed auto

!

interface FastEthernet0/1

ip address 10.41.3.1 255.255.255.0

duplex auto

speed auto

bridge-group 1

!

ip http server

ip classless

ip route 0.0.0.0 0.0.0.0 10.41.1.3

ip route 10.41.2.0 255.255.255.0 Tunnel1

!

!

bridge 1 protocol ieee

bridge 1 route ip

!

line con 0

line aux 0

line vty 0 4

password test

login

!

!

!

end

RouterA#

Router B:

RouterB#sh run

Building configuration...

Current configuration : 898 bytes

!

version 12.3

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

hostname RouterB

!

boot-start-marker

boot-end-marker

!

enable secret 5 %%%%%%%%%%%%%%%%%%%%%

!

no aaa new-model

ip subnet-zero

!

!

ip cef

!

!

!

bridge irb

!

!

interface Tunnel1

no ip address

tunnel source Ethernet0/0

tunnel destination 10.41.1.4

bridge-group 1

!

interface Ethernet0/0

ip address 10.41.1.1 255.255.255.0

half-duplex

!

interface Ethernet0/1

ip address 10.41.2.1 255.255.255.0

half-duplex

bridge-group 1

!

no ip http server

ip classless

ip route 0.0.0.0 0.0.0.0 10.41.1.3

ip route 10.41.3.0 255.255.255.0 Tunnel1

!

!

snmp-server community public RO

snmp-server enable traps tty

bridge 1 protocol ieee

bridge 1 route ip

!

line con 0

password test

line aux 0

password test

line vty 0 4

password test

login

!

!

!

end

RouterB#

To repeat the Prolem/Question:

How do i get ARP request and answers to travel through the GRE tunnel?

Best Regards

Jarle Steffensen

Labels:
0 Helpful
5 Replies 5

anjo
Level 1
Level 1

‎05-13-2004 11:09 PM

Jarle,

Since IP routing is enabled, the router will not bridge ARP through the tunnel.

You need to disable IP routing (no ip routing)

globally and enable a default route (ip default-gateway x.x.x.x)

This way the router will act as a host / not as a router.

Thereby the ip packets should be flowing through the tunnel.

Good luck.

0 Helpful

jsteffensen
Level 1
Level 1
In response to anjo

‎05-25-2004 06:59 AM

Hi

whenturning off the routing, the tunnel went down...

To get close to the reality, I've bulit the test environment up via Internet. One connected using Ethernet, the other using aDSL....

I think we will do a 2 way nat through the tunnel, and WINS to solve name-resolution.......

Greetings

Jarle Steffensen

0 Helpful

anjo
Level 1
Level 1
In response to jsteffensen

‎05-25-2004 08:52 AM

Hi Jarle,

I still think bridging is an option.

Please try the following configuration:

Router A:

!

int e 0

desc * inside *

bridge-group 1

!

int e 1

desc * outside *'

ip address 1.1.1.1 255.255.255.0

!

int tunnel 0

tunnel source ethernet 1

tunnel destination 1.1.1.2

brigde-group 1

!

no ip routing

!

ip default-gateway 1.1.1.2

!

bridge 1 protocol ieee

!

Router B:

!

int e 0

desc * inside *

bridge-group 1

!

int e 1

desc * outside *'

ip address 1.1.1.2 255.255.255.0

!

int tunnel 0

tunnel source ethernet 1

tunnel destination 1.1.1.1

brigde-group 1

!

no ip routing

!

ip default-gateway 1.1.1.1

!

bridge 1 protocol ieee

!

Please note the commands are written as I remember them.

It is very important the ip routing is disabled and

You specify the ip default-gateway statement.

Since the router will act as a host when ip routing is enabled.

/anders

0 Helpful

ziutek
Level 1
Level 1
In response to anjo

‎05-25-2004 11:12 PM

What about using DLSW? But I guess this would have to depend on what type of traffic you are bridging. This encapsulates non-routable traffic in an IP/TCP packet, such as NetBios or SNA.

Joe

0 Helpful

jsteffensen
Level 1
Level 1
In response to ziutek

‎05-26-2004 04:17 AM

Hi Joe

I've been considering using L2TPv3, but sinse i have NO (!) experience of this... If i've gotten it Right L2TPv3 is able to capture all ethernet-frames and place them into IP Packets and send them over the wan link (or through the tunnel).

DLSW.... I've read some configuration samples..... This could be the solution.

I'll post the reult after testing it out in the lab/pilot

Greetings

Jarle

0 Helpful
Customers Also Viewed These Support Documents