RRI (Reverse Route Injection)

Unanswered Question
Jul 9th, 2008

Hi,

I'm trying to understand the example in the cisco doco at,

http://www.cisco.com/en/US/docs/ios/12_3t/12_3t14/feature/guide/gt_rrie.html#wp1054104

1) It says "creates routes on the basis of the source network and source netmask that are defined in the crypto access control list (ACL)". I thought it would be Destination network and mask in crypto ACL as it says here,

http://www.cisco.com/en/US/docs/ios/12_3t/12_3t14/feature/guide/gt_rrie.html#wp1053812

"For static crypto maps, routes are created on the basis of the destination information defined in the crypto access list.".

2) Continuung with the example, it says

"The reverse-route command in this situation creates routes that are analogous to the following static route command-line interface (CLI) commands (ip route):

Remote Tunnel Endpoint

ip route 10.1.1.1 255.255.255.255 192.168.1.1

VPNSM

ip route 10.1.1.1 255.255.255.255 vlan0.1 "

I expected it to be,

ip route 10.0.0.0 255.255.0.0 10.1.1.1

and

ip route 10.1.1.1 255.255.255.255 FastEthernet 0/0

Is the example wrong is my understanding? I would appreciate your clarification.

Regards, MH

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
smahbub Tue, 07/15/2008 - 08:13

Reverse Route Injection (RRI) is used to populate the routing table of an internal router running Open Shortest Path First (OSPF) protocol or Routing Information Protocol (RIP) for remote VPN Clients or LAN²LAN sessions. RRI was introduced into versions 3.5 and later of the VPN 3000 Concentrator Series (3005 - 3080).

Refer the following url for more info on RRI::

http://www.cisco.com/en/US/docs/ios/security/configuration/guide/sec_vpn_ha_enhance_ps6350_TSD_Products_Configuration_Guide_Chapter

Actions

This Discussion