Solved: How i can create this network --see the picture

ThomasMull9000 · ‎10-30-2011

Hello guys i have 2 cisco routers , and iam using GRE tunneling , so how i can connect this isolated private network of 172.40.20.x

Find the attachment file

Kishore Chennupati · ‎11-01-2011

Hi thomas,

Thanks for that info. ok then you wil have to go for Option 2 as I have mentioned in my prev post. This is what you do on your right hand side.

The set up will be as follows

R1(192.168.50.10)--->2960 switch--->(192.168.50.50)R2(172.20.40.x)

So , you plug another router(R2) into the 2960 switch and give it an ip address on the interface say 192.168.50.50/24.

you can give any ip address from the 192.168.50.0/24 range which is not being used and on the other interface on the router you can assign it 172.20.40.x/24

on the R1 router you put a static route

ip route 172.20.40.x 255.255.255.0 192.168.50.50

on R2 router

ip route 192.168.1.0 255.255.255.0 192.168.50.10

On the left hand side router

ip route 172.20.40.x 255.255.255.0 192.168.50.10

That's it. Everything should work fine. let me know how you go.

HTH

Regards

Kishore

View solution in original post

Vaibhava Varma · ‎10-30-2011

Hi Thomas

I believe we already have a thread going on regarding same setup and Vipin did recommend you a good solution but if still something is unclear we could disucss on same..

https://supportforums.cisco.com/message/3478011#3478011

Adding to Vipin.s point once your GRE Tunnel is through between the two locations the simplest way to achieve communication between the two networks would be to use Static ROuting at each location and provide the routes to reach the remote site networks via the GRE Tunnel Interface

e.g ) If Tunnel Interface is Tu10 then on Site A put a Static Route for Site B's Private Networks

ip route x.x.x.x y.y.y.y tunnel10

and same way on site B put a Static ROute for Site A's Private Networks.

ip route x.x.x.x y.y.y.y tunnel10

Hope this helps to answer your question. Do let me know for any questions. I would also request you to please not open multiple threads for same questions to avoid any confusion and get promt answers.

Regards

Varma

Marwan ALshawi · ‎10-30-2011

just to add to Varma post

if you are using this tunnel over the Internet it is highly recommended to use IPsec encryption with the GRE see the below links for more details

http://www.nil.si/ipcorner/IPsecVPN2/#chapter3

http://www.cisco.com/en/US/tech/tk827/tk369/technologies_configuration_example09186a00800946b8.shtml

hope this help

if helpful Rate

ThomasMull9000 · ‎10-30-2011

Thank You Varma , Marwanshawi , Vipin .. i got your point i already created GRE tunnel and it's working smoothly . but if you see my network diagram picture deeply you will see there is another private network so how i can connect to that network do i need a switch and what type of switch and how i can route the traffic through this third private network

tHANK YOU GUYS

Kishore Chennupati · ‎10-30-2011

Thomas,

Option1:

What switch are you currently using on either end?If you are using a L3 switch then you can simply create another vlan interface for this subnet 172.20.40.x and assign ports to that vlan and create a subinterface on the router for this vlan as well

Option2:

You can also use something called routed subnets. You create a routed subnet So, lets assume you want this subnet in your right hand side site then the set up will be as follows

R1(192.168.50.10)--->L2 switch--->(192.168.50.50)R2(172.20.40.x)-----L2switch

on the R1 router you put a static route like this

ip route 172.20.40.x 255.255.255.0 192.168.50.50

on R2 router

ip route 192.168.50.10

Now in terms of reachability, if you are using static routes then just have a static route on the remote side router pointing to both these subnets viat the tunenel end point.

HTH

Regards

Kishore

ThomasMull9000 · ‎10-31-2011

Thank for you reply and helpfull

i have cisco catalayst switch for the right side of 172.20.40.x and 192.168.50.x

what i need is that my left side of 192.168.1.x should access my left side of 172.20.40.x and 192.168.50.x

so now i can only reach 192.168.50.x using GRE Tunnel -- so this network of 172.20.40.x how i use it , can i make vlan to my switch and .. so how

Kishore Chennupati · ‎10-31-2011

hi Thomas

As I mentioned in my prev post

What is the model of the switch you are using on the right hand side? Is it a 3750 , 3550,3560,2960???

If you can tell me what switch you are using I can help you .

Regards

Kishore

ThomasMull9000 · ‎10-31-2011

My switch is Cisco Catalyst 2960 Model -- Thank You Kishore Chennuapati --

Kishore Chennupati · ‎11-01-2011

Hi thomas,

Thanks for that info. ok then you wil have to go for Option 2 as I have mentioned in my prev post. This is what you do on your right hand side.

The set up will be as follows

R1(192.168.50.10)--->2960 switch--->(192.168.50.50)R2(172.20.40.x)

So , you plug another router(R2) into the 2960 switch and give it an ip address on the interface say 192.168.50.50/24.

you can give any ip address from the 192.168.50.0/24 range which is not being used and on the other interface on the router you can assign it 172.20.40.x/24

on the R1 router you put a static route

ip route 172.20.40.x 255.255.255.0 192.168.50.50

on R2 router

ip route 192.168.1.0 255.255.255.0 192.168.50.10

On the left hand side router

ip route 172.20.40.x 255.255.255.0 192.168.50.10

That's it. Everything should work fine. let me know how you go.

HTH

Regards

Kishore