Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
1474
Views
0
Helpful
2
Replies

Site to Site IOS IPSEC VPN and EIGRP

Go to solution
danhosking
Level 1
Level 1

ā€Ž03-20-2011 04:33 AM - edited ā€Ž02-21-2020 05:14 PM

Hi,

I have a remote site conecting to a core router via an  IPSEC VPN. I do not want to run EIGRP accoss the VPN. howerver I want to adverstise to the rest of the network from the core router the subnet at the remote site.

Is the remote VPN subnet handled like a connected route on the core router?

Will configuriguring a network statment for the remote site on the core router cause EIGRP to advertise the route?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee
In response to danhosking

ā€Ž03-20-2011 03:16 PM

You are correct.

RRI (Reverse Route Injection) is the correct method to advertise the remote routes as static routes on the HUB, and all you need to do is redistribute static into EIGRP so it gets redistributed into your EIGRP.

Here is a sample configuration:

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00809d07de.shtml

(It's on OSPF and dynamic IPSec VPN, however, the concept is the same for site-to-site ipsec and redistributing into EIGRP)

Hope that helps.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
danhosking
Level 1
Level 1

ā€Ž03-20-2011 05:14 AM

I believe I need to add reverse-route to the crypto map so that the remote site subnet can be advertised by the core router using EIGRP. Is this correct?

0 Helpful

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee
In response to danhosking

ā€Ž03-20-2011 03:16 PM

You are correct.

RRI (Reverse Route Injection) is the correct method to advertise the remote routes as static routes on the HUB, and all you need to do is redistribute static into EIGRP so it gets redistributed into your EIGRP.

Here is a sample configuration:

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00809d07de.shtml

(It's on OSPF and dynamic IPSec VPN, however, the concept is the same for site-to-site ipsec and redistributing into EIGRP)

Hope that helps.

0 Helpful
Customers Also Viewed These Support Documents