cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
5822
Views
0
Helpful
21
Replies

MPLS Configuration on Cisco 1841 Router

vinayak
Level 1
Level 1

Dear All,

I want some help in configuration.

We are having 2 Branches (1 Head office & 1 is Branch Office). We are having MPLS Connection between 2 Offices. I am having Internet Connection @ my Head office.

I want to connect two offices using MPLS Connection & Want my Brach OFfice LAN users should use Internet connection which is @ my Head office.

How to do this ?

& Also i am having Cisco ASA 5510 @ head office & Want to apply all the Restiction on Branch office LAN Users Also. Means All the Traffice of Head Office & Branch Office Should follow rules in ASA 5510.

How to do this ?

Please help me ....

21 Replies 21

ahalwani
Level 1
Level 1

you don't need MPLS a simple tunnel is enough

Latchum Naidu
VIP Alumni
VIP Alumni

Hi,

I hope the routers at your branch office is managed by you (i mean except the PE ones).

OR

You have only one router that is PE one and managing by provider?

If you have the router which is managing by you then you can route the internet traffic on to head office by configuring below in branch office router.

ip route 0.0.0.0 0.0.0.0 "head office firewall IP"

Make sure the head office firewall is reaching over MPLS first.

Regards,

Naidu.

Hi,

Well, the configuration depends, Do you have L3VPN MPLS connection between your 2 branches? if not what type of connection you have?

Also what is the current connection between your head office and branch office?

Regards,

Mohamed

Dear Mohamed,

Currently we dont have any connection between my offices. I want to connect them using MPLS ....

Please suggest some solution ..

Thanks...

Hi Naidu,

Thanks for reply.

Yes, The both the routers are managed by us only.

MPLS IP @ Head office : 10.1.22.21 - 10.1.22.22

INTERNET IP @ Head Office : 1.2.2.2 /30

Head office LAN : 192.168.0.0/24

MPLS IP @ Branch Office : 10.1.22.24 - 10.1.22.25

Brach Office LAN : 192.168.1.0 /24

@ My Head office Do i Need following  Routes:

ip route 0.0.0.0 0.0.0.0 1.2.2.2

Now Also i want to reach my Brach office LAN PCs..

So whats the route i have to add ?

& Whats is route to add to reach to internet which is @ Head office Through ASA ?

Can Anyone Reply on This ??

Dear Vinayak,

Are you configuring any proxy IP? if yes it should reach the Branch LAN from your Head office where ASA 5510 is situated.

On the ASA 5510 you can permit the LAN IP'S which are to be given internet access.

Regards,

Ranjit Shinde

Dear Ranjit,

I am not using any proxy ip..

i just want my Branch office LAN Users should use Internet Which is at my head office.

& i want that Brach office LAN Users should also follow the rules & Restrictions that i applied in ASA @ Head office.

HI!,

Can your Head Office and Branch office be segmented on the same LAN

as for eg 10.0.0.0/26 for head office and Branch LAN 10.0.0.64/26 for branch LAN

in turn you can apply policy for 10.0.0.0/24 Subnet itself.....

Regards,

Ranjit Shinde

Dear Ranjit,

My Head office LAN IP : 192.168.0.0/24

Brach Office LAN : 192.168.1.0 /24

We are having MPLS Connection between 2 sites. Through which i want my Brach Office LAN Should use Internet connection which is @ my Head office.

& Want both the sites should inter communicate.

Head Office Config :

Internet IP : 1.1.1.1

MPLS IP : 10.1.89.11 (my end)

                 10.1.89.10 (ISP End)

LAN IP : 192.168.0.0 /24

Brach Office Config :

MPLS IP : 10.1.89.14 (My END)

                 10.1.89.13 (ISP End)

LAN IP : 192.168.1.0 /24

Dear Vinayak,

So whats the Problem?

is your internet IP ie 1.1.1.1 reachable from the branch side.

where are you applying policies????

Regards,

Dear Ranjit,

I am going to configure those routers on sunday.

I just want to be prepare, thats why i post this query.

I think i just add a routes to My LAN & Internet from Brach office.

& at my Brach office should i give Default Route with next hop address of ASA @ head office for internet access ?

Dear Vinayak,

If i am not wrong your Network Topology is as Below

Head Office <------------------------------>  MPLS Cloud <----------------------------------------> Branch Office

If this is tha above scenarion

then you have to advertise the LAN segement used at your head office from ther HEAD OFFICE MPLS Link in order for the them to reach Branch office.

(Which Protocol are you using ??? and how are you going to peer with the provider?)

From branch office you will have to only add a default route from the branch to reach the HEAD office.

Hope i am not confusing you.

Regards,

Dear ranjit,

i am not going to use any dynamic protocol.

I just using Static Routing.

I just want to Move my branch office traffic to internet via ASA ...

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: