GRE tunnel problem

Unanswered Question
Sep 15th, 2008
User Badges:

I have applied the below confgs on two remote cisco routers connected to internet,the tunnel status is up up but I cant ping the tunnel ip address,what might be the problem??

Router1:

int tunnel 1

tunnel source s0/0

tunnel destination x.x.x.x (f0/0 of R2)


Router2:

int tunnel 1

tunnel source f0/0 (real ip)

tunnel dest x.x.x.x (s0/0 of R1)


Thanks

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Marwan ALshawi Mon, 09/15/2008 - 05:20
User Badges:
  • Purple, 4500 points or more
  • Community Spotlight Award,

    Best Publication, December 2015

do u have routing protocol configured?


have u included the tunel interfaces in ur routing


also put the tunnel mode


god luck

mohammady Mon, 09/15/2008 - 19:05
User Badges:

I dont have routing protocol also I use the default tunnel mode

mohammady Tue, 09/16/2008 - 04:13
User Badges:

the tunnel stat is up up but I cant ping the other end??for the route I have a default route on both routers.....

mohammady Tue, 09/16/2008 - 04:20
User Badges:

the two routers connected to service provider routers (internet connection)


mohammady Tue, 09/16/2008 - 04:24
User Badges:

really I dont know ,it is the service provider network>>>how can I make sure that the tunnel is working properly....???

To be honest - you need to know this.


As you will be using RFC1918 internal IP addresses. So you will NAT or your provider might NAT for you - you need a routable source and destination for the tunnel to work. You also need to know if there any devices in between the connection between the 2 sites that could be blocking the runnel. What is the connection to the internet?? MPLS? Frame-Relay? ADSL ??


Right now you don't have enought information - you need to do some digging.


HTH>

mohammady Wed, 09/17/2008 - 06:52
User Badges:

one of them has dedicated E1 connection and the other one connected to a second router in possession of our service provider and then to internet...


R1--->E1

R2--->service provider Router --->internet

mohammady Wed, 09/17/2008 - 12:07
User Badges:

the tunnel stat is up up >>>what this implies??




it implies nothing really, only the interface that is the source is know and up/up and that the router has a valid "live" route in it's routing table for the destination.


Just for you - configure your end with the following:-


int tun1

keepalive 1 3


Then close the tunnel and re-open it....does it come back up/up ????


At the end of the day you can trick a tunnel into being up/up if you have the time and a spare router with 1 ethernet interface do this:-


do not connect any cables to the ethernet interface.


Give the interface an ip address of 192.168.1.1/24


create a tunnel 1

tunnel source <>

tunnel destination 192.168.2.1


ip route 192.168.2.1 255.255.255.255 <>


and here is the magic - in the ethernet interface configure "no keepalive" this tricks the interface to come up/up - the there wiull be a connected interface in the routing table of 192.168.1.0/24


As you have a configured static route 192.168.2.1 out of the ethernet interface - there will be a static route in the routing table. As the tunnel can see a valid route - without keepalives, it will bring the tunnel up!


Try it out - great fun.


Your issue is still the path from 1 site to the other site and going over the internet I presume, you have nat issues, blocking issues or just plain connectivity/routing issues.


HTH>


Actions

This Discussion