Re: DMVPN one way http/https access traffic

ensibambo · ‎11-11-2021

Hi everyone,

Please kindly assist with the below strange behavior im experiencing with DMVPN operations.

I have a setup for one Hub and one Spoke running IPSEC with ospf as a routing protocol.

http/https from the spoke side to host sitting on the LAN behind the Hub router does not work.

Direction not working: nodes sitting behind the Spoke router trying to http/https to webhosts sitting behind Hub router does not work.

dmvpn remote host cannot http or https to web hosts sitting behind the hub router
these are (VMware vcenters, nas storage, access points, media servers etc) basically anything
with http/https.

ssh access from the spoke side network and rdp to anyhost/switches/routers behind the hub
router works without any issue.

Working path: Hosts Network sitting behind the Hub to Spokes hosts works (http/s/ssh/rdp etc)

balaji.bandi · ‎11-11-2021

how is your ACL Look like for the interesting traffic?

what is IP range behind Hub Router ? and what is the source you try to access from the spoke router?

if possible please post the configuration. from spoke behind source can ping to device behind Hub Router?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

ensibambo · ‎11-12-2021

Hi Balaji,

It turn out to be a windows server 2016 Virtual machine issues (updates issues ) from the spoke LAN side.

I have used a physical windows 10 Client PC and its all working.

Thank you

Edwin

balaji.bandi · ‎11-12-2021

Glad to know it resolved, can we make this as resolved, and thank you for sharing the outcome with our community.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

MHM Cisco World · ‎11-16-2021

following