Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1103
Views
10
Helpful
2
Replies

EIGRP over GRE Tunnel

Michael Durham
Level 4
Level 4

‎08-11-2020 05:47 PM

I have an office router with networks 192.168.100.x and 192.168.200.x.  I also have a remote home office router what also has the 192.168.100.x and 192.168.200.x networks.  These two routers are connected over the internet via an encrypted tunnel.  The home office only has one PC and one Cisco IP phone..  All is working now but every time I want access a new device at the office from home, I need to enter a static route to it.  The office router is a Cisco 3925 and the home router is a Cisco 1921 and both are using IOS 15.7.

I tried enabling EIGRP on both sides but it does not seem to work.

My goal is to be able to ping and connect to a printer at work to my home PC without having to add a specific static router to the printer.
The home PC's IP is 192.168.100.21  I tried putting this on both routers:

router eigrp 9001
network 192.168.100.0
network 192.168.200.0
neighbor 192.168.100.1 Tunnel200

Any suggestions?  Thank You

Labels:
0 Helpful
2 Replies 2

Francesco Molino
VIP Alumni
VIP Alumni

‎08-11-2020 07:12 PM

Hi

Quick question : is eigrp mandatory?
I'm saying that because you only have 2 subnets on each site so you would be able to do nat to avoid overlapping and use static routes.
This would be an easy fix and easy implementation.
Or have you already thought about that and have a specific use case which wouldn't work in that design?

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question

e.ciollaro
Level 4
Level 4

‎08-12-2020 01:30 AM

Hi,

if you are using an IPSec tunnel, EIGRP can't work properly because EIGRP use multicast that is not supported over IPSec. If you really need EIGRP, configure GRE over IPSec to support mutlicast or try to configure EIGRP to work with unicast:

 

routye eigrp <as>
neighbor <ip> <interf>

In any case I suspect that EIGRP does not resolve your problem because home office router has, in its routing table, networks 192.168.100.x and 192.168.200.x as connected and therefore with a best admin metric then EIGRP. So it would always try to reach host with address 192.169.100.x and 192168.200.x locally and not over the tunnel.  As suggested by Francesco, the best thing to to is using NAT

 

Bye

enrico

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card