Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
829
Views
0
Helpful
10
Replies

GRE Tunnel.

azibnaseem1
Level 1
Level 1

‎06-03-2016 11:44 PM - edited ‎03-05-2019 04:09 AM

Dear CISCO Team,

I have two ISP's setups both located on different cities. Yesterday, I have configured GRE Tunnel between them but neighbor relationship would't form between both ISP's routers. Neighbor is showing for moment into OSPF neighbor then gone and it happens continuously. Kindly, suggest me how could I successfully configure GRE tunnel. 

Thanks,

Labels:
0 Helpful
10 Replies 10

Philip D'Ath
VIP Alumni
VIP Alumni

‎06-04-2016 12:16 AM

The most common issue is where you advertise vi OSPF the end points of the tunnel, thorugh the tunnel itself, creating a recursive loop.

Can you post the tunnel configuration, physical interface configuration, static routes and OSPF config from one router please.

0 Helpful

azibnaseem1
Level 1
Level 1
In response to Philip D'Ath

‎06-04-2016 01:39 PM

Dear Mr. Philip,

Thanks for the reply,

Requested outputs are attached from one side of my router. Kindly, review and update.

Thanks,

0 Helpful

Philip D'Ath
VIP Alumni
VIP Alumni
In response to azibnaseem1

‎06-04-2016 01:39 PM

You do have a recursive routing problem.  There is more than one solution.  I think this solution is the easiest.  You need to add a static host route for the remote "tunnel destination" on each router.

Add this to this router (and a similar thing for the remote router):

ip route 203.124.34.1 255.255.255.255 <default gateway>
0 Helpful

azibnaseem1
Level 1
Level 1
In response to Philip D'Ath

‎06-06-2016 04:33 AM

Dear Mr. Philip,

Thanks for the reply,

IP address 203.124.34.1 is ping able from my router. What I want to do is that I have some private networks on both sides like 10.0.0.0/16. I do want to make these private network accessible and ping able from both sides. I did add static routes between both routers and my private networks are pinging from tunnel interface all other interfaces didn't able to ping my private networks. Could I accomplish this task using GRE?

Thanks,

0 Helpful

Richard Burts
Hall of Fame
Hall of Fame
In response to azibnaseem1

‎06-06-2016 07:47 AM

The original post talked about GRE tunnels and OSPF. Now the current post is talking about GRE and static routes. But there is no config information available to show what is there. So the only answer that I can give is that if the GRE tunnel is correctly configured and is in a stable operating state that it should be available for private networks on one side to access private networks on the other side using the GRE tunnel as transport. If you need help in figuring out why it is not working then provide details on what is configured.

HTH

Rick

HTH

Rick
0 Helpful

azibnaseem1
Level 1
Level 1
In response to Richard Burts

‎06-06-2016 09:38 AM

Dear Mr. Richard,

Thanks for reply,

Tunnel interfaces are configured properly and router can ping their tunnel interfaces IP,s.

Any required configuration will be porvided.

Thanks,

0 Helpful

Philip D'Ath
VIP Alumni
VIP Alumni
In response to azibnaseem1

‎06-06-2016 02:08 PM

So to confirm; after adding the static routes I gave the GRE tunnels are now stable and staying up?

0 Helpful

azibnaseem1
Level 1
Level 1
In response to Philip D'Ath

‎06-07-2016 10:26 PM

Dear Mr. Philip,

Tunnel Interface on both routers are UP and pinging each other whither I add static route or not.

tunnel Interfaces IP's: 172.16.10.1 - 2.

I can successfully ping from 172.16.10.1 to 172.168.10.2, but when I try to ping to 172.16.10.2 from my physical interface, its failed.

Thanks, 

0 Helpful

Richard Burts
Hall of Fame
Hall of Fame
In response to azibnaseem1

‎06-10-2016 10:23 AM

There are multiple things that might cause symptoms like you describe:

- there might be an access policy that prevents the ping from the physical interface.

- the GRE tunnel might be in a VRF that is different from the physical interface.

- there might be some route for 172.16.10.2 that points in the wrong direction.

Since you have provided no information about how the router is configured we can not know what the real cause is.

HTH

Rick

HTH

Rick
0 Helpful

paul driver
VIP
VIP

‎06-06-2016 01:54 PM

Hello

The GRE destination addresses need to be reachable via the Physical interfaces not through OSPF peering between the GRE source/destination addressing

You may just have one OSPF peering at present via the GRE interfaces, thus the rtrs are seeing the tunnel destination addresses via this peering and not via the physical next hop of the GRE tunnels

Either advertise the physical next hop subnet, which would then create an additional OSPF peering but then the GRE destination would be advertised correctly through this new OSPF peering due to the shorter advertised OSPF interface cost

or

As suggested by Philip - add a static route for the gre destination pointing the physical next hop of each router.


res

Paul


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card