Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
7654
Views
5
Helpful
7
Replies

mGRE vs DMVPN

Oleg Gnedykh
Level 1
Level 1

‎02-25-2015 11:32 PM - edited ‎03-05-2019 12:53 AM

Hi All !!!
I have started learning DMVPN and found out that DMVPN is mGRE without IPSec.
But I can't find an independent manual about mGRE without DMVPN.
Can anybody explain difference between mGRE and DMVPN ???
 OR  
give me please link to manual solo mGRE !

Thanks in advance dear All !!!

 

1 person had this problem
Labels:
0 Helpful
7 Replies 7

Cisco Freak
Level 4
Level 4

‎02-26-2015 03:17 AM

mGRE is key ingredient to build the DMVPN tunnel. Without mGRE we can't build the DMVPN tunnel.

DMVPN uses a combination of the following technologies to build the tunnel :

1. Multipoint GRE (mGRE) 
2. Next-Hop Resolution Protocol (NHRP) 
3. Dynamic Routing Protocol (EIGRP, RIP, OSPF, BGP) 
4. Dynamic IPsec encryption(Optional)

 

http://ccieat2016.blogspot.in/2014/12/dmvpn.html

Oleg Gnedykh
Level 1
Level 1
In response to Cisco Freak

‎02-26-2015 04:02 AM

Hi Freak !!!
Can you looking up to my answer for Jon Marshall

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame

‎02-26-2015 03:35 AM

DMVPN can be run without IPSEC but more often than not it includes IPSEC.

It also includes other technologies one of which is mGRE which is basically the ability to terminate multiple tunnels on a single interface.

Without mGRE every single site, including the hub would need a tunnel per connection to any other site which is not very scalable with a large number of sites.

See this link which explains all the technologies that are part of DMVPN, including mGRE and how they work together -

http://blog.ine.com/2008/08/02/dmvpn-explained/

Jon

0 Helpful

Oleg Gnedykh
Level 1
Level 1
In response to Jon Marshall

‎02-26-2015 03:57 AM

Hi Jon !!!

Thank you for your answer !

I have mentioned about mGRE cause I have saw in Cisco Blue Print R&S Labs a chapter 3.1

"3.1.c [ii] Dynamic GRE" and I have thought it same mGRE. Is it true ? 

0 Helpful

Cisco Freak
Level 4
Level 4
In response to Oleg Gnedykh

‎02-26-2015 04:05 AM

3.1.c (i) GRE = Point to point GRE tunnel
3.1.c (ii) Dynamic GRE = Multipoint GRE tunnel with DMVPN

0 Helpful

Oleg Gnedykh
Level 1
Level 1
In response to Cisco Freak

‎02-26-2015 04:22 AM

OK but next point is

3.1.d Implement and troubleshoot DMVPN [single hub]               
  3.1.d [i] NHRP
  3.1.d [ii] DMVPN with IPsec using preshared key
  3.1.d [iii] QoS profile
  3.1.d [iv] Pre-classify

So, I've finally involved. If Dynamic GRE is part of DMVPN, then why divided it in Blue Print
https://learningnetwork.cisco.com/docs/DOC-22706

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame
In response to Oleg Gnedykh

‎02-26-2015 06:16 AM

You would have to ask Cisco that question or perhaps try the Cisco Learning Network.

Dynamic GRE to me just means you don't have to statically configure the tunnel destination IP address, it is dynamically learnt.

Although as NHRP, which is the method used to do this, is included in the next section I understand the confusion.

There is actually a separate dynamic GRE ietf draft using DHCP but I am mot aware this is what Cisco is asking about.

Like I say try CLN as they concentrate on certifications there.

Jon

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card