Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
600
Views
0
Helpful
1
Replies

BGP or LAN Issue

mohammad salman
Level 1
Level 1

‎12-16-2014 02:07 AM - edited ‎03-07-2019 09:54 PM

Dear,

 

I am facing this problem since a week and i tried all the way but unable to solve.

Kinldy see the attached network diagram picture.

We have 4 branches including HQ . We have MPLS VPN and DIA connections in HQ and only VPN in branches from the ISP.

MY problem is i am able to reach the branches from HQ but branches are not able to reach HQ.

Suppose 192.168.100.51 belongs to HQ , this ip is not reachable from branches but once i open this server and ping the branches any IP then this IP is reachble and everymorning i have to do this from all the servers.

I contacted ISP and according to them their is no issue in BGP protocol or any from their side. They tell that problem is in the LAN.

we have only one subnet in HQ. We also have two gateways in HQ 192.168.100.1 ( firewall) 192.168.100.10 ( VPN router).

Users are having gateway as 192.168.100.1 even i changed the gateway of some servers to be 192.168.100.10 then also the problem continues.

We did not make any changes this was the setup since a year and everything was fine but recently we replaces just the microwave  from then this issue started but ISP tells that microwave has no relation and routers are able to reach each other so issue in the LAN but its strange that the same setting are from a year and the problem started now.

 

i am attaching the configuration of HQ VPN router and Branch VPN router in the attachement.

kInldy provide a solution for this . we dont have L3 switches in our network only L2. one solution i know is that having a  L3 switch and making routing.

 

Labels:
Preview file
78 KB
Preview file
83 KB
Preview file
137 KB
Preview file
85 KB
Preview file
2 KB
Preview file
2 KB
Preview file
2 KB
0 Helpful
1 Reply 1

Joseph Nelson
Level 1
Level 1

‎12-16-2014 07:50 AM

Hi,

 

Seems like your issue is related to the VPN. Seems like your VPN is timing out and bringing down the tunnels..this may explain why initiating a ping from the server restores reachability.

You have site-to-site VPN between HQ and Branch VPN routers? I don't see any VPN config in your "hq_vpn_router" config so I assume your firewall is actually serving as the VPN Hub?

 

Let me know...

Joe

0 Helpful
Customers Also Viewed These Support Documents