09-03-2024 05:43 AM
Question on TLOC preference. Quick diagram attached.
If private1 is set to higher TLOC preference, can it cause issue routing to sites that only have public-internet?
For example:
R1 should always route traffic across private1 to R3 and vice-versa.
R1 should route traffic directly to R2 and R4 over public-internet because R2 and R4 only have public internet.
I was going to modify a central policy that would prefer private networks over public by setting a higher tloc preference on the private colors. I just want to make sure this would not cause any routing issues with routing between sites.
For example:
R1 should not route traffic to R3 to get to R4.
Thanks in advance,
Alex
09-12-2024 03:20 AM
Sorry can you more elaborate if this issue still not solve?
MHM
09-13-2024 05:53 AM
This is what I am trying to accomplish. I am just wanting to apply preference on all internet circuits and MPLS circuits. However, some sites only have internet circuits. I do not want to break traffic to a site that does not have MPLS.
09-13-2024 04:23 AM
Hi ,
From your Scenario I understand R1 and R3 has both Private1 and Public-internet whereas R2 and R4 has only Public Internet. In this case when R1 wants to communicate with R4 then R1 routing table has R4 site routes with next hop of R4 Public Internet TLOC only(because no private 1 color in R4). So R1 will send the traffic through R1pubInt:R4PubInt ipsec tunnel directly. R1 will send the R4's traffic to R3 only when it does not finds the R4 site specific routes in its routing table and default route pointed to R3
09-13-2024 05:55 AM
Here is a diagram of what I am trying to accomplish. I just want to make sure that after I apply the preference:
1. A site talking to another site where each site have MPLS circuits, use the MPLS circuit both directions (symmetric)
2. A site talking to another site where one site has MPLS and internet and the other site only has internet talks to that site over internet and is not broken.
09-13-2024 07:13 AM
https://www.networkacademy.io/ccie-enterprise/sdwan/tunnel-groups
I think this solved with TLOC group
MHM
10-08-2024 01:45 AM
Yes its doable with the Preference. If you would like to have Site 3 to Site 4 Communication this can be achieved using Transport gateway which is used to connect two disjoint network. In this case Site 1 or 2 can be Transport gateway for Site 3 -Site 4 communication
10-10-2024 07:55 AM
So sites 1 and 2 can talk to 3, and sites 1 and 2 can talk to 4. Even though MPLS is preferred on sites 1 and 2, the site with only internet is still reachable?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide