ā03-20-2011 04:33 AM - edited ā02-21-2020 05:14 PM
Hi,
I have a remote site conecting to a core router via an IPSEC VPN. I do not want to run EIGRP accoss the VPN. howerver I want to adverstise to the rest of the network from the core router the subnet at the remote site.
Is the remote VPN subnet handled like a connected route on the core router?
Will configuriguring a network statment for the remote site on the core router cause EIGRP to advertise the route?
Solved! Go to Solution.
ā03-20-2011 03:16 PM
You are correct.
RRI (Reverse Route Injection) is the correct method to advertise the remote routes as static routes on the HUB, and all you need to do is redistribute static into EIGRP so it gets redistributed into your EIGRP.
Here is a sample configuration:
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00809d07de.shtml
(It's on OSPF and dynamic IPSec VPN, however, the concept is the same for site-to-site ipsec and redistributing into EIGRP)
Hope that helps.
ā03-20-2011 05:14 AM
I believe I need to add reverse-route to the crypto map so that the remote site subnet can be advertised by the core router using EIGRP. Is this correct?
ā03-20-2011 03:16 PM
You are correct.
RRI (Reverse Route Injection) is the correct method to advertise the remote routes as static routes on the HUB, and all you need to do is redistribute static into EIGRP so it gets redistributed into your EIGRP.
Here is a sample configuration:
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00809d07de.shtml
(It's on OSPF and dynamic IPSec VPN, however, the concept is the same for site-to-site ipsec and redistributing into EIGRP)
Hope that helps.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide