Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
912
Views
0
Helpful
1
Replies

Multi-VRF Route based VPN Support on AWS CSR1000v

JasonCran25184
Level 1
Level 1

‎01-25-2021 02:04 PM

Hi,

 

Thanks in advanced for your time.  

 

I am trying to configure a CSR1000v in AWS to have 2 customer side VRFs (VRF 70 and 71) and route based VPNs tied to each VRF. There is a remote gateway terminating the tunnels (it can handle the multi-vrf stuff on it's own side).  I want each VPN sourced from a different public IP on the CSR. 

 

1. Is this design possible on a CSR? Meaning, can you have two VPNs in dedicated VRFs but point to the same destination VPN endpoint IP?

2. Do I need two separate fVRFs so as not to have conflicting default routes? Or is it just easier to use a couple static routes for the destination GW IPs? 

 

Sorry for the crude drawing, just a quick example of what I need to do. 

I configured everything with VRF aware configs but can't get the tunnels to come up and debugs don't provide a lot of direction. 

 

Thanks, 

Labels:
Preview file
29 KB
0 Helpful
1 Reply 1

Sergey Lisitsin
VIP Alumni
VIP Alumni

‎01-26-2021 03:25 AM

I can't see any problems with having two public IPs and having two tunnels to the same destination. If they are in different VRFs, then you are safe. 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card