Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
632
Views
1
Helpful
4
Replies

DMVPN configuration

Naveen L
Spotlight
Spotlight

‎09-19-2024 07:29 AM

Introduction:

This document gives information about DMVPN with a configuration example.

 

What is DMVPN?

 

DMVPN stands for Dynamic Multipoint VPN and it is an effective solution for dynamic secure overlay networks. In short, DMVPN is combination of the following technologies:

 

  • Multipoint GRE (mGRE)
  • Next-Hop Resolution Protocol (NHRP)
  • Dynamic Routing Protocol (EIGRP, RIP, OSPF, BGP)
  • Dynamic IPsec encryption
  • Cisco Express Forwarding (CEF)

 

Physical Connectivity:

 

naveenal_0-1726756011765.png

 

 

 

HUB:

naveenal_1-1726756011789.png

 

 

ROUTER 2

 

naveenal_2-1726756011791.png

 

 

 

 

ROUTER 3

 

naveenal_3-1726756011793.png

 

 

 

ROUTER 4

 

naveenal_4-1726756011793.png

 

 

 

DMVPN Config:

 

Once you have physical connectivity you can add the DMVPN configuration.

 

HUB

 

naveenal_5-1726756011794.png

 

 

 

ROUTER 2

 

naveenal_6-1726756011796.png

 

 

 

ROUTER 3

 

naveenal_7-1726756011796.png

 

 

 

ROUTER 4

 

naveenal_8-1726756011797.png

 

 

IPSEC:

Next you will need to add IPSEC, this will ensure that traffic is not sent in clear text. This configuration will be added to each router except router 1.

 

naveenal_9-1726756011798.png

 

 

Dynamic Routing

To enable dynamic routing i am using EIGRP add the following configuration to each routers except router 1.

 

naveenal_10-1726756011798.png

 

 

 

Verification:

 

Dynamic Tunnels:

 

naveenal_11-1726756011799.png

 

 

 

NHRP Tunnels:

 

naveenal_12-1726756011800.png

 

Labels:
0 Helpful
4 Replies 4

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎09-19-2024 07:53 AM

Hello @Naveen L ,

instead of screnshots texts showing configuration commands are more useful in documentation

Hope to help

Giuseppe

 

0 Helpful

Naveen L
Spotlight
Spotlight
In response to Giuseppe Larosa

‎11-29-2024 05:08 AM

@Giuseppe Larosa Sure will try add the same thanks

0 Helpful

paul driver
VIP
VIP

‎11-30-2024 03:14 AM

Hello
I see you are just showing phase 2 DMVPN overlay running eigrp, you can also have (OSPF/BGP -iBGP/eBGP) and phase1/3 running dynamic routing protocols.

plus you can also have various dmvpn topology's 
single hub/single cloud - as you have here
single hub/dual cloud
dual hub/single cloud
dual hub/dual cloud

Additionally i see you are using the "old" IOS way of applying spoke NHRP registration/mapping, in more recent ios you can use a single statement for this regards dynamic multicast.

Example:
NHC (spoke)
ip nhrp nhs 10.1.1.1 nbma 192.168.1.100 mutilcast


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

Naveen L
Spotlight
Spotlight
In response to paul driver

‎12-05-2024 11:35 PM

Thanks for you letting me know that

0 Helpful
Customers Also Viewed These Support Documents