%ADJ-5-PARENT: Midchain parent maintenance for IP midchain / EIGRP Problems - Page 2

Brian M · ‎04-23-2009

I have am using DMVPN which is working perfectly for domestic sites but as soon as I start using routers overseas I am getting the following error:

%ADJ-5-PARENT: Midchain parent maintenance for IP midchain out of Tunnel1, addr 10.48.12.2 854E1580 - looped chain attempting to stack

These routers are the exact same routers that we use in the United States and we are using the same config. I have no idea what's going on here.

Right now I have only one tunnel connecting to the routers and it's still complaining about the loop.

I've attached the config..

Thanks!!

Building configuration...

!

crypto isakmp policy 1

encr aes 256

hash md5

authentication pre-share

group 2

crypto isakmp key <removed> address 0.0.0.0 0.0.0.0 no-xauth

!

crypto ipsec transform-set AES esp-aes 256 esp-md5-hmac

mode transport

!

crypto ipsec profile AAA_VPN_2.0

set transform-set AES

!

bridge irb

!

interface Loopback0

ip address 10.100.1.52 255.255.255.255

!

interface Tunnel1

bandwidth 1500

ip address 10.48.12.22 255.255.254.0

no ip redirects

ip mtu 1200

ip nhrp authentication VPN20_T1

ip nhrp map 10.48.12.2 1.1.1.1

ip nhrp map 10.48.12.1 2.2.2.2

ip nhrp map multicast 1.1.1.1

ip nhrp map multicast 2.2.2.2

ip nhrp network-id 1

ip nhrp nhs 10.48.12.2

ip nhrp nhs 10.48.12.1

ip nhrp registration no-unique

tunnel source FastEthernet4

tunnel mode gre multipoint

tunnel protection ipsec profile AAA_VPN_2.0

!

interface FastEthernet0

!

interface FastEthernet1

!

interface FastEthernet2

!

interface FastEthernet3

!

interface FastEthernet4

ip address dhcp

ip nat outside

ip virtual-reassembly

duplex auto

speed auto

!

interface Dot11Radio0

no ip address

shutdown

speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0

station-role root

bridge-group 1

bridge-group 1 subscriber-loop-control

bridge-group 1 spanning-disabled

bridge-group 1 block-unknown-source

no bridge-group 1 source-learning

no bridge-group 1 unicast-flooding

!

interface Vlan1

no ip address

bridge-group 1

bridge-group 1 spanning-disabled

!

interface BVI1

ip address 10.32.50.1 255.255.255.0

ip nat inside

ip virtual-reassembly

!

router eigrp 10

passive-interface default

no passive-interface Tunnel1

network 10.48.12.22 0.0.0.0

network 10.100.1.52 0.0.0.0

no auto-summary

!

logging dmvpn

!

tacacs-server host 172.27.10.212 key 7 <removed>

tacacs-server host 10.2.100.208 key 7 <removed>

tacacs-server directed-request

!

control-plane

!

bridge 1 route ip

!

line con 0

no modem enable

line aux 0

line vty 0 4

transport input ssh

!

scheduler max-task-time 5000

end

Richard Burts · ‎08-27-2020

Sergio

You are welcome. Yes it is an old discussion, and I am happy to see that it continues to be helpful. It is a pretty unusual symptom and the error message is not very helpful in identifying the cause of the problem. Well deserved +5 for bringing this discussion back into view.

I realize in reading through the discussion that I only indirectly acknowledge the work of the TAC engineers to help me find the root cause of this symptom. So I would like to offer my belated thanks to those skillful engineers.

HTH

Rick

George Vanyan · ‎04-12-2023

Hello, I have run into the same issue when simply making a packet tracer activity, the error looks like this

R2> %LINEPROTO-5-UPDOWN: Line protocol on Interface Tunnel10, changed state to up

01:37:12: %OSPF-5-ADJCHG: Process 10, Nbr 5.5.5.5 on Tunnel10 from LOADING to FULL, Loading Done

R2> %ADJ-5-PARENT: Midchain parent maintenance for IP midchain out of 10 65E900C0 - looped chain attempting to stack

%TUN-5-RECURDOWN: 10 temporarily disabled due to recursive routing

%LINEPROTO-5-UPDOWN: Line protocol on Interface Tunnel10, changed state to down

01:37:17: %OSPF-5-ADJCHG: Process 10, Nbr 5.5.5.5 on Tunnel10 from FULL to DOWN, Neighbor Down: Interface down or detached

ISP router has only interfaces ip addresses, nothing else

George Vanyan · ‎04-13-2023

Tried setting 111 AD for ip route 0.0.0.0 0.0.0.0 1.1.1.1 111 (to override ospf)

Tried static route straight to tunnel interface - doesn't work at all

No matter with or without PAT

MHM Cisco World · ‎04-13-2023

Share this issue in separate link I will check and find solution for it

Richard Burts · ‎04-13-2023

Am I correct in understanding that this is being done in Packet Tracer? If so we may need to consider that it is some issue with PT. I find it strange (and frustrating) that some of the messages have time stamp but most do not. Are the log messages perhaps generated from different processes?

This is a very old discussion, with multiple occurrences of the midchain parent maintenance issue. The common finding is that the issue is caused when there is a static route for the tunnel endpoint and a dynamic routing protocol running over the tunnel. As best as I can determine that seems to be the case here. And in the previous cases the issue was caused when the physical interface changed state to protocol down. We do not have enough information about the current case to know if that is the case, but I suspect that either it is the case, or we have encountered another strange misbehavior in PT.

HTH

Rick

George Vanyan · ‎04-14-2023

i believe in my case it's either a bug or my mistake. OSPF Adjchg error, adj-5-parent error, recursive routing error in PT - this is my issue