06-28-2018 08:25 PM - edited 03-05-2019 10:41 AM
Dear Team,
I have configured DMVPN between HUB and Spook with spook having Dynamic ip (Nat behind local ADSL Router with dynamic ip). I have used OSPF as routing protocol. My DMVPN is also up, route is advertised in OSPF. I am able to ping lan IP configured in HUB Router (Cisco 2911). All traffic from spook is send to HUB. I have send my default route from HUB to My upstream Firewall (fortigate or Sophos) to access my core services as well for Internet.
Now my main Problem is,
However despite all thing branch is not able to access any services or access internet hosted in or behind HUB firewall.
Your assistance to resolve this issue will be appreciated.
Thanks in advance
07-09-2018 02:15 AM - edited 07-09-2018 02:17 AM
What networks are you trying to reach from the spoke?
Do you have routes for these networks on the spoke?
Do you have route on the spoke for 172.28.1.0?
Can you ping from the spoke "ping 172.28.1.1 source 192.168.120.254"