Dual Hub + GRE Tunnel

Unanswered Question
Aug 4th, 2010


I got Dual VPN Hub VPN scenario

At HQ we got VPN-Hub#1 && VPN-HUB#2

On each Spoke One Tunnel points to Hub#1 and second Tunnel points to Hub#2

Example on Spoke3

Tunnel 1 will be  Active Tunnel pointing to HUB#1 ( all traffic to HQ goes via this Tunnel )

Tunnel 2 will be Active tunnel  pointing to Hub#2  but no traffic will pass to HQ unless reachability to HQ is down via Tunnel 1

I tested the attached config but doesnt seems to work. ( I will have IPSEC over GRE after routing issue is resolved )

Another concern would be how to avoid recursive routing in this scenario

Please comment.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jorge.calvo Fri, 08/06/2010 - 03:32


To which device do IPs, and belong to? You use them as the next-hop in your default routes. If that IPs are not reachable your tunnel interface will be down.

I changed those next-hops by the exit interface Fa0/0 and I can ping every IP on your scenario via the tunnel.

Hope this helps.

saquib.tandel Fri, 08/06/2010 - 08:49


Yes reachability is there to HQ from Spoke3 router when Tunnel 1 is down.

But no traffic passes from Tunnel 2 to HQ and vise-versa.

From HQ SW the traffic to Spoke3 sems to hit the Hub1 instead of Hub2 ( when Tunnel 1 is down ) and traffic is drop




This Discussion