Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
827
Views
15
Helpful
3
Replies

EIGRP and static route issue

lovejit1313
Level 1
Level 1

‎07-04-2019 01:07 PM

Hello Guys,

we are MPLS provider 

I have a weird issue, I have three client sites connected in an MPLS.  we have configured EIGRP for them.  all sites are exiting through one main site from Firewall and everything works well.

 

The issue is here site 1 has VLAN 192.168.170.0/24

                           site 2       --> 192.168.172.0/24  -- new WAN only to reach one IP

                           site 3 ---- > 192.168.171.0/24   --> Firewall --> WAN

 

site3 has Firewall and Wan connectivity and all VLANs are learning default route through eigrp.  

 

The customer added new WAN at site 2 and want that site 1 access one particular public IP through site2 WAN.  

I already added a static route on site 1 that next hop is site 2 internal IP and then add the same route at site forwarding traffic to new WAN but traffic is still leaving through Site 3.

 

When I do sh ip route for that IP and it shows me Known via static IP but traceroute shows that it's leaving from site 3 WAN.

 

I think it is  because from site 1 next hop device is same (PE router where vrf is configured )

 

Thanks

 

 

Labels:
0 Helpful
3 Replies 3

Georg Pauwen
VIP
VIP

‎07-04-2019 01:32 PM

Hello,

 

it is hard to figure out what the topology you describe looks like, can you provide a schematic drawing including IP addresses, and indicate what the customer wants to add ?

Hector Gustavo Serrano Gutierrez
Cisco Employee
Cisco Employee

‎07-04-2019 05:17 PM - edited ‎07-05-2019 05:17 AM

If I understand correctly, you are saying you manage a MPLS L3 VPN and you have 3 sites connected to it.

Using MPLS jargon, we can say that:

- An internet circuit is on Site 3 connected to a Firewall. Site 1 and site 2 route their Internet traffic over the MPLS L3 VPN to reach site 3 where the traffic is forwarded to the Internet.

- You put the Static Route on CE-1 (site 1) pointing to CE-2 (site 2) IP address with the intention that traffic on site 1 will be routed over the MPLS L3 VPN to site 2 to reach only that one “public IP” over the new Internet circuit on Site 2.

You should actually have CE-2 (site 2) advertise that “public IP” to PE-2 (which connects to CE-2) so the MPLS L3 VPN can route the traffic from site 1 to site 2 to reach that “public IP”. If you are not using a dynamic routing protocol between CE-2 and PE-2 you have to configure a static route to that “public IP” pointing to CE-2's IP and redistribute it into BGP VPNv4 on PE-2.

Take cautions since that can also make CE-3 (site 3) receive the route if you are also using a dynamic routing protocol on that site and therefore, make traffic sourced on that site sent to site 2 to reach that "public IP" as well.

lovejit1313
Level 1
Level 1
In response to Hector Gustavo Serrano Gutierrez

‎07-05-2019 09:00 AM

Hello @Hector Gustavo Serrano Gutierrez  @Georg Pauwen    

 

You understand exactly what I am trying to explain.  Now if I redistribute that static route in eigrp, it applies on all sites to reach that particular IP from CE-2 new ISP and it worked.  

 

I want that for one particular subnet, Is it possible if I do Policy base routing by using route-map and redistribute with that route map.

 

Does it work?

 

Thanks

0 Helpful
Customers Also Viewed These Support Documents