03-12-2018 06:42 AM - edited 03-05-2019 10:05 AM
Hello guys,
I want to prepare for a new deployment for my DMVPN and EIGRP hub. Currently, we only have 1 hub for all EIGRP and DMVPN spokes. We're preparing to get 2 new Cisco routers for redundancy. My current config on the hub and spokes is as follows:
HUB
interface Tunnel0 description DMVPN ip address 10.255.14.1 255.255.254.0 no ip redirects ip mtu 1400 ip wccp 62 redirect in ip flow monitor NTAmonitor input ip nhrp authentication enlivant ip nhrp map multicast dynamic ip nhrp network-id 1 ip nhrp holdtime 300 ip nhrp registration no-unique ip nhrp redirect ip summary-address eigrp 2 10.0.0.0 255.0.0.0 ip tcp adjust-mss 1360 keepalive 5 3 tunnel source GigabitEthernet0/0 tunnel mode gre multipoint tunnel key 1 tunnel vrf outside tunnel protection ipsec profile AES-SHA shared end
sh run sec eigrp
ip summary-address eigrp 2 10.0.0.0 255.0.0.0
router eigrp 2
network 0.0.0.0
passive-interface default
no passive-interface Tunnel0
no passive-interface GigabitEthernet0/1.10
SPOKE
interface Tunnel0 description DMVPN ip address 10.255.14.162 255.255.254.0 no ip redirects ip mtu 1400 ip nhrp authentication enlivant ip nhrp map 10.255.14.1 1.1.1.1 ip nhrp map multicast 1.1.1.1 ip nhrp network-id 1 ip nhrp holdtime 300 ip nhrp nhs 10.255.14.1 ip nhrp redirect ip tcp adjust-mss 1360 keepalive 5 3 tunnel source GigabitEthernet0/0/1 tunnel mode gre multipoint tunnel key 1 tunnel protection ipsec profile AES-SHA shared ip virtual-reassembly end
sh run | sec eigrp
router eigrp 2
distribute-list prefix BLOCK-EIGRP-DEFAULT in
network 10.0.0.0
passive-interface default
no passive-interface Tunnel0
eigrp stub connected
Since I'm adding a redundant router, how should I configure my HUB and SPOKES to ensure redundancy and load balancing?
Thank you
Solved! Go to Solution.
03-13-2018 08:32 AM
Hello,
Oh - I apologize. I did not know that the document I've referenced was under tighter access control. I think it is in error, but I will need to check this internally.
Either way, I believe this is an older revision of the document that should still be freely accessible:
https://supportforums.cisco.com/legacyfs/online/legacy/3/9/5/26593-DMVPNbk.pdf
Can you perhaps try this one?
Best regards,
Peter
03-13-2018 02:21 AM
Hello,
This might not be an entirely straightforward answer, but I would encourage you to read through this very informative Scalable DMVPN Design and Implementation Guide:
It is admittedly long, but it explains a lot, and provides an overview of how to approach the same problem from multiple ends, depending on what might suit you better.
Feel welcome to ask further!
Best regards,
Peter
03-13-2018 08:00 AM
03-13-2018 08:32 AM
Hello,
Oh - I apologize. I did not know that the document I've referenced was under tighter access control. I think it is in error, but I will need to check this internally.
Either way, I believe this is an older revision of the document that should still be freely accessible:
https://supportforums.cisco.com/legacyfs/online/legacy/3/9/5/26593-DMVPNbk.pdf
Can you perhaps try this one?
Best regards,
Peter
03-15-2018 07:14 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide