10-23-2013 09:18 AM - edited 03-04-2019 09:23 PM
Hi:
The command documenation is very limited:
http://www.cisco.com/en/US/docs/ios-xml/ios/interface/command/ir-t2.html#wp1398569350
Can someone explain what this command is really supposed to do?
If I set it on the Tunnel interface which has a known destination I get a value of UNKNOWN for the Tunnel source.
I would like the Tunnel source to be dynamic in that the IOS chooses the IP address from the UP interface used in the path (route) to the destination, i.e.: outbound interface.
Thanks for any insight.
-----------------------------
Current configuration : 489 bytes
!
interface Tunnel0
ip address 192.168.66.196 255.255.255.192
no ip redirects
ip mtu 1400
ip pim sparse-dense-mode
ip nhrp authentication XYZ
ip nhrp group XYZ_QOS
ip nhrp map multicast 172.31.31.31
ip nhrp map 192.168.66.193 172.31.31.31
ip nhrp network-id 111
ip nhrp holdtime 180
ip nhrp nhs 192.168.66.193
ip tcp adjust-mss 1360
qos pre-classify
tunnel source dynamic
tunnel destination 172.31.31.31
tunnel key 100111
tunnel protection ipsec profile XYZ
end
TESTRTR#sh int t0
Tunnel0 is up, line protocol is down
Hardware is Tunnel
Internet address is 192.168.66.196/26
MTU 17912 bytes, BW 100 Kbit/sec, DLY 50000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation TUNNEL, loopback not set
Keepalive not set
Tunnel source UNKNOWN, destination 172.31.31.31
Tunnel protocol/transport GRE/IP
Key 0x1870F, sequencing disabled
Checksumming of packets disabled
Tunnel TTL 255, Fast tunneling enabled
Tunnel transport MTU 1472 bytes
Tunnel transmit bandwidth 8000 (kbps)
Tunnel receive bandwidth 8000 (kbps)
Tunnel protection via IPSec (profile "XYZ")
Last input never, output 00:30:59, output hang never
Last clearing of "show interface" counters 00:58:18
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo (QOS pre-classification)
Output queue: 0/0 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
0 packets input, 0 bytes, 0 no buffer
Received 0 broadcasts (0 IP multicasts)
0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
0 packets output, 0 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 unknown protocol drops
0 output buffer failures, 0 output buffers swapped out
12-17-2013 08:23 AM
Did I ask in the wrong forum maybe?
07-17-2015 02:44 PM
The only place I've seen "tunnel source dynamic" referenced is for IKEv2. Maybe there are other uses, but in the IKEv2 example you'd use:
crypto ikev2 client flexvpn CRYPTO-IKEV2-CLIENT source 1 GigabitEthernet8 track 1 source 2 GigabitEthernet9 track 2 client connect Tunnel1 interface Tunnel1 tunnel source dynamic
12-17-2013 08:45 AM
For a tunnel you are supposed to supply the two terminating end points. Using dynamic will not require you to configure the source address. You can connect to Internet anyways [may be with a dynamic IP address], the tunnel will be created. Pretty much what you have already stated.
HTH.
12-17-2013 11:03 AM
Yes that's what I would expect to happen, but it does not in practice. So the qusetion remains, how and when is this command supposed to be used.
12-17-2013 02:06 PM
Can you add 'tunnel mode gre multi'
Thanks.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide