Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2519
Views
0
Helpful
2
Replies

Cellular Dialer and ADSL Dialer with DMVPN

jain.nitin
Level 3
Level 3

‎12-25-2012 09:20 AM

Hi Experts,

I am trying to establsih DMVPN spoke with two different internet link technology one is ADSL over ethernet (PPPOE) and 3G (Cellular).

Now I am trying to establish DMVPN spoke over these two internet links. If ADSL router goes down (means Dialer interface 1 goes down) then cellular interface should trigger automatically and then dmvpn should connect over it.

I have configured router but it does not working cellular interface is not dialing when I shut down dialer interace 1. Attached is the configuration of router.

Please help me to achieve the desired goal.

Thanks

!

boot-start-marker

boot-end-marker

!

!

!

no aaa new-model

!

clock timezone UAE 4 0

!

no ipv6 cef

no ip source-route

no ip gratuitous-arps

ip cef

!

!

!

ip multicast-routing

!

!

no ip bootp server

no ip domain lookup

!

multilink bundle-name authenticated

!

!

chat-script dial "" "ATDT*98#" TIMEOUT 60 "CONNECT"

!

!

redundancy

!

!

!

!

controller Cellular 0/0

!

ip tcp synwait-time 12

ip ssh time-out 30

ip ssh source-interface GigabitEthernet0/0

ip ssh logging events

ip ssh version 2

!

!

crypto isakmp policy 100

encr 3des

authentication pre-share

group 2

crypto isakmp key test123 address 0.0.0.0 0.0.0.0

!

!

crypto ipsec transform-set esag esp-3des esp-sha-hmac

mode transport

!

crypto ipsec profile dmvpn

set security-association lifetime seconds 1800

set transform-set dmvpn

!

crypto ipsec profile dmvpnbkp

set security-association lifetime seconds 1800

set transform-set dmvpn

!

!

!

!

!

!

interface Tunnel1

description ++++ Primary DMVPN Cloud 1 ++++

backup interface Tunnel11

ip address x.x.x.x

no ip redirects

no ip unreachables

no ip proxy-arp

ip mtu 1400

ip authentication mode eigrp 100 md5

ip authentication key-chain eigrp 100 MYCHAIN

no ip next-hop-self eigrp 100

ip nhrp authentication test123

ip nhrp map multicast x.x.x.x

ip nhrp map x.x.x.x x.x.x.x

ip nhrp network-id 11

ip nhrp holdtime 180

ip nhrp nhs x.x.x.x

ip tcp adjust-mss 1360

no ip split-horizon eigrp 100

tunnel source Dialer1

tunnel mode gre multipoint

tunnel key 11

tunnel protection ipsec profile dmvpn shared

!

interface Tunnel2

description ++++ Secondary DMVPN Cloud 2 ++++

backup interface Tunnel21

ip address x.x.x.x 255.255.255.0

no ip redirects

no ip unreachables

no ip proxy-arp

ip mtu 1400

ip authentication mode eigrp 100 md5

ip authentication key-chain eigrp 100 MYCHAIN

no ip next-hop-self eigrp 100

ip nhrp authentication test123

ip nhrp map x.x.x.x x.x.x.x

ip nhrp map multicast x.x.x.x

ip nhrp network-id 10

ip nhrp holdtime 180

ip nhrp nhs x.x.x.x

ip nhrp registration no-unique

ip tcp adjust-mss 1360

no ip split-horizon eigrp 100

tunnel source Dialer1

tunnel mode gre multipoint

tunnel key 10

tunnel protection ipsec profile dmvpn shared

!

interface Tunnel11

description ++++ Primary DMVPN Cloud 1 ++++

ip address x.x.x.x

no ip redirects

no ip unreachables

no ip proxy-arp

ip mtu 1400

no ip next-hop-self eigrp 100

ip nhrp authentication Esagr0up

ip nhrp map x.x.x.x x.x.x.x

ip nhrp map multicast x.x.x.x

ip nhrp network-id 11

ip nhrp holdtime 180

ip nhrp nhs x.x.x.x

ip tcp adjust-mss 1360

no ip split-horizon eigrp 100

tunnel source Cellular0/0/0

tunnel mode gre multipoint

tunnel key 11

tunnel protection ipsec profile dmvpnbkp shared

!

interface Tunnel21

description ++++ Secondary DMVPN Cloud 2 ++++

ip address x.x.x.x 255.255.255.0

no ip redirects

no ip unreachables

no ip proxy-arp

ip mtu 1400

no ip next-hop-self eigrp 100

ip nhrp authentication Esagr0up

ip nhrp map x.x.x.x x.x.x.x

ip nhrp map multicast x.x.x.x

ip nhrp network-id 10

ip nhrp holdtime 180

ip nhrp nhs x.x.x.x

ip tcp adjust-mss 1360

no ip split-horizon eigrp 100

tunnel source Cellular0/0/0

tunnel mode gre multipoint

tunnel key 10

tunnel protection ipsec profile dmvpnbkp shared

!

interface Embedded-Service-Engine0/0

no ip address

shutdown

!

interface GigabitEthernet0/0

description +++ Connected to LAN +++

ip address x.x.x.x 255.255.255.0

ip accounting output-packets

ip nat inside

ip virtual-reassembly in

duplex auto

speed auto

!

interface GigabitEthernet0/1

description ++++ connected to Internet ADSL ++++

no ip address

ip nat outside

ip virtual-reassembly in

duplex auto

speed auto

pppoe enable group global

pppoe-client dial-pool-number 1

!

interface GigabitEthernet0/2

no ip address

shutdown

duplex auto

speed auto

!

interface Cellular0/0/0

ip address negotiated

ip nat outside

ip virtual-reassembly in

encapsulation ppp

dialer in-band

dialer idle-timeout 3600

dialer string dial

dialer-group 1

async mode interactive

ppp authentication pap callin

ppp eap refuse

ppp chap refuse

ppp ms-chap refuse

ppp ms-chap-v2 refuse

ppp ipcp dns request

!

interface Cellular0/0/1

no ip address

encapsulation ppp

!

interface Dialer1

ip address negotiated

ip nat outside

ip virtual-reassembly in

encapsulation ppp

dialer pool 1

dialer-group 1

ppp authentication chap pap callin

ppp pap sent-username cisco password cisco123

no cdp enable

!

!

router eigrp 100

distribute-list 10 out Tunnel1

distribute-list 10 out Tunnel2

distribute-list 10 out Tunnel11

distribute-list 10 out Tunnel21

network 192.168.x.0

network 192.168.y.0

network 192.168.z.0

distance eigrp 15 18

passive-interface default

no passive-interface Tunnel1

no passive-interface Tunnel2

no passive-interface Tunnel11

no passive-interface Tunnel21

!

ip forward-protocol nd

!

ip http server

ip http authentication local

ip http secure-server

ip http timeout-policy idle 60 life 86400 requests 10000

!

ip nat inside source route-map cellular interface Cellular0/0/0 overload

ip nat inside source route-map dialer interface Dialer1 overload

ip route 0.0.0.0 0.0.0.0 Dialer1

ip route 0.0.0.0 0.0.0.0 Cellular0/0/0 10

!

access-list 10 permit 192.168.x.0 0.0.0.255

access-list 10 permit 192.168.y.0 0.0.0.255

access-list 10 permit 192.168.z.0 0.0.0.255

access-list 101 deny   ip 192.168.x.0 0.0.0.255 192.168.0.0 0.0.255.255

access-list 101 permit ip any any

!

!

!

!

route-map cellular permit 10

match ip address 101

match interface Cellular0/0/0

!

route-map dialer permit 10

match ip address 101

match interface Dialer1

!

!

!

control-plane

!

!

!

line con 0

login local

line aux 0

line 2

no activation-character

no exec

transport preferred none

transport input all

transport output pad telnet rlogin lapb-ta mop udptn v120 ssh

stopbits 1

line 0/0/0

exec-timeout 0 0

script dialer dial

logging synchronous

no exec

line 0/0/1

no exec

line vty 0 4

privilege level 15

logging synchronous

login local

transport input telnet ssh

line vty 5 15

privilege level 15

login local

transport input telnet ssh

1 person had this problem
Labels:
0 Helpful
2 Replies 2

Emmanuel Valdez
Level 3
Level 3

‎01-24-2013 09:48 PM

Hi,

Did you try the Internet connection only with your cellular interface? Can you post a show ver and show inventory please?

Regards.

Sent from Cisco Technical Support iPhone App

0 Helpful

jain.nitin
Level 3
Level 3
In response to Emmanuel Valdez

‎03-07-2013 12:58 AM

Hi, I tried with cellular only it works but I need 3G as backup of ADSL. So dmvpn tunnel should come up via 3G if ADSL goes down.

0 Helpful
Customers Also Viewed These Support Documents