Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1944
Views
0
Helpful
5
Replies

DMVPN tunnel and internet access over the same interface

bsciarra1
Level 1
Level 1

‎03-08-2012 08:11 AM - edited ‎03-04-2019 03:35 PM

Good morning, at a branch location we currently have a T1 that is set up as our DMVPN tunnel that the branch uses for access to headquarters when their Primary MPLS circuit goes down.

Right now their default route points to headquarter for internet access through our Headquarter internet circuit.  We want to use their local T1 circuit as their default route so they won't have to come through headquarters for internet access.

If we change their default route, can the DMVPN tunnel we use for failover when MPLS goes down and the default route for general internet access co-exist on the same interface?

Would I have to create subinterfaces to make this work?

Labels:
0 Helpful
5 Replies 5

rupertsedgwick
Level 1
Level 1

‎03-08-2012 09:18 AM

yes they can coexist, no you don't need sub interfaces.

0.0.0.0 route with a metric higher than 90 to the t1 interface

Eigrp for DMVPN will route other traffic to the tunnel interface with the lower metric of 90

Sent from Cisco Technical Support iPhone App

0 Helpful

bsciarra1
Level 1
Level 1
In response to rupertsedgwick

‎03-08-2012 11:48 AM

Rupert thank you for your reply.  I'm sorry but I don't know what you mean by routing it with a higher metric.

ip route 0.0.0.0 0.0.0.0 "T1 IP ADDRESS" ... then what

0 Helpful

rupertsedgwick
Level 1
Level 1

‎03-08-2012 12:29 PM

Ip route 0.0.0.0 0.0.0.0 t1.ip.ad.dr 91

The eigrp routes used by the dmvpn have a metric of 90 and will take precedence. Therefore tunnel routes to other sites will go to the tunnel and everything else straight to the T1 interface.

Sent from Cisco Technical Support iPhone App

0 Helpful

jamiegrive
Level 1
Level 1
In response to rupertsedgwick

‎03-08-2012 01:59 PM

Hi - I think you mean administrative distance, not metric. Does that make more sense now?

Sent from Cisco Technical Support iPhone App

0 Helpful

bsciarra1
Level 1
Level 1
In response to rupertsedgwick

‎03-11-2012 01:52 PM

Thank you for your reply.  I've applied the changes ip route 0.0.0.0 0.0.0.0 T1IPADDRESS 91. 

But strangely enough it appears my internet traffic is still going out our Primary WAN circuit via BGP.

We are trying to keep our WAN traffic to continue out our MPLS circuit via bgp policy to headquarters, but we want to send all internet-only traffic out their local T1 circuit. 

I thought by changing their default route to their local circuit this would take care of it.  Is there something I'm missing?

Could it be that my router already knows its previous route to the internet and is still going the direction it knows rather than the newly applied route.  Is there something that needs to be reset or cleared?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card