I am experiencing a problem with traffic over a TE tunnel. I have two routers point-to-point with a TE tunnel built between the two, using the auto-route announce feature. I can ping any address located locally on the far end router that goes via the tunnel but any addresses going through the tunnel and leaving the router fails. EG ping far end router with a /30 address hanging off it on the other side, the local, say .1 address works, but the other end, .2 fails.
If i remove the tunnel and allow standard routing everything is okay.
In addition to the above. If i debug the packes when i ping i can see the packets leave the far end PE router to the destination address, i then see the return packet come back into this router and leave via the Tunnel interface. They enter the tunnel at the far end on the return trip but never make it to the originating router.
my test topology is as follows, i have 4 routers, comprising the mpls network, they are connected like a square, with a router on each corner. the problem occurs on the bottom two routers, with the tunnel connected point-to-point between them. On the bottom left PE router i have a 2800 connected via a /24 ethernet connection which i am using just as a device to ping to.
What happens is, when i have no tunnels working i can ping from any interface on the bottom right router to the ethernet interface on the 2800 router.
if i bring the tunnel up and have a static routes via the tunnel on both bottome PEs i find that i can ping the 2800 only if the return traffic does not come back via the tunnel. EG if i ping from the right bottom router to the 2800 it uses the loo0 source address in the ping packet, this will be successful. if i ping the 2800 from a soucre interface which the far end router has a static to point back via the tunnel it fails.
when this happans i see the packets arrive at the 2800 and come back to the left hand router and leave via the tunnel back to the source, and they never arrive.
I have since found that if i kill the link between the bottom right and left routers the tunnel will take the alternative route around the square, when this happens i have full connectivity.
In answering your question the tunnels start and end on the bottom roght and bottom left routers and they are configured both ways.
I'm still a little confused. If you ping from the bottom right router and that this router has a route for the 2800 address via the tunnel, the default source address used for the ping should be the loopback address of this router.
Can you provide a "show ip cef " from the bottom left router and also a "show adj det" to see that traffic is really entering the tunnel.
Harold Ritter Sr. Technical Leader CCIE 4168 (R&S, SP) firstname.lastname@example.org México móvil: +52 1 55 8312 4915 Cisco México Paseo de la Reforma 222 Piso 19 Cuauhtémoc, Juárez Ciudad de México, 06600 México
The Cisco EPN system incorporates a network architecture designed to consolidate multiples services on a single Multiprotocol Label Switching (MPLS) transport network. This network is designed primarily based on Application Engineered...
Internet security is important with the increasing attacks that are happening every day. Many internet and browsing security solutions exist, but some are not very easy to use or maybe the question is how can I enable them?
Cisco Software Manager Server
This document describes the programmatic interfaces, RESTful APIs, which are supported by Cisco Software Manager Server (CSM Server).
CSM Server supports a set of finite RESTful APIs. The fir...