When I perform a traceroute from a remote location that traverses through my border router, when the traceroute reaches my border router, I receive that hop twice followed by the final hop. (see hops 4 and 5). Traceroute and all data packets are flowing but fear this double hop is an issue waiting to happen.
EX:
traceroute 10.10.50.5
1 10.10.10.1
2 10.10.20.2
3 10.10.30.3
4 10.10.40.4
5 10.10.40.4
6 10.10.50.5
Border router config
interface Tunnel10
ip address 10.10.40.4 255.255.255.252
ip access-group IN-ACL in
ip access-group OUT-ACL out
no ip redirects
tunnel source Serial0/1/0
tunnel destination 172.16.5.1
!
interface GigabitEthernet0/0
no ip address
!
interface GigabitEthernet0/1
no ip address
!
interface GigabitEthernet0/0.20
encapsulation dot1Q 31
bridge-group 20
!
interface GigabitEthernet0/1.20
encapsulation dot1Q 31
bridge-group 20
!
interface Serial0/1/0
ip address 10.10.99.1 255.255.255.252
ip access-group IN-LINK in
no ip redirects
load-interval 30
no service-module t1 remote-loopback full
no cdp enable
crypto map ENCRYPT-DATA
!
interface BVI20
ip address 10.10.50.1 255.255.255.240
!
bridge 20 priority 65535
bridge 20 protocol ieee
bridge 20 route ip
--end--
Show ip route on the border router shows the border router is layer two adjacent to the last hop 10.10.50.5 via BVI20.
The ip routing table shows 10.10.50.0/28 is directly connected via BVI20
BORDER#sh ip ro
Gateway of last resort is 10.10.50.12 to network 0.0.0.0
C 10.10.40.0/30 is directly connected, Tunnel10
C 10.10.99.0/30 is directly connected, Serial0/1/0
10.10.50.0/28 is subnetted, 1 subnets
C 10.10.50.0 is directly connected, BVI20
Spanning-tree is blocking G0/0.20, fordwarding on G0/1.20.
There is only a single switch between the border router and final hop (10.10.50.5)
Thanks for at least looking!!
ANY thoughts?
Frank
