Dual Hub + GRE Tunnel

saquib.tandel · ‎08-04-2010

Hello

I got Dual VPN Hub VPN scenario

At HQ we got VPN-Hub#1 && VPN-HUB#2

On each Spoke One Tunnel points to Hub#1 and second Tunnel points to Hub#2

Example on Spoke3

Tunnel 1 will be Active Tunnel pointing to HUB#1 ( all traffic to HQ goes via this Tunnel )

Tunnel 2 will be Active tunnel pointing to Hub#2 but no traffic will pass to HQ unless reachability to HQ is down via Tunnel 1

I tested the attached config but doesnt seems to work. ( I will have IPSEC over GRE after routing issue is resolved )

Another concern would be how to avoid recursive routing in this scenario

Please comment.

saquib.tandel · ‎08-05-2010

Hello

Any feedback why the attached config in original post not woking...

jorge.calvo · ‎08-06-2010

Hello,

To which device do IPs 1.1.1.2, 2.2.2.1 and 3.3.3.2 belong to? You use them as the next-hop in your default routes. If that IPs are not reachable your tunnel interface will be down.

I changed those next-hops by the exit interface Fa0/0 and I can ping every IP on your scenario via the tunnel.

Hope this helps.

saquib.tandel · ‎08-06-2010

Hi

Yes reachability is there to HQ from Spoke3 router when Tunnel 1 is down.

But no traffic passes from Tunnel 2 to HQ and vise-versa.

From HQ SW the traffic to Spoke3 sems to hit the Hub1 instead of Hub2 ( when Tunnel 1 is down ) and traffic is drop

thansk

ST