Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1302
Views
0
Helpful
2
Replies

CISCO LISP + GETVPN RLOC interface in VRF

Go to solution
meiercyrill
Level 1
Level 1

‎03-01-2016 08:04 AM - edited ‎03-01-2019 08:12 AM

I’am a student making an apprenticeship.

My current task is to create a new VPN LAB environemente.

I have to compare DMVPN Phase 3 with Cisco LISP + GETVPN.

Thanks to the Cisco GETVPN+LISP Lab Guide I was able to build a quiet good lab.

But there is no MGMT routing separation. I want to have Loopback 0 interface and the interface facing to the RLOC to be vrf forwarding to MGMT.

But then LISP stopped working.

 

I was searching for a solution and I tried to vrf forwared the Lisp Interface , which did not worked out for me. 

I didn't quiet get what those 2 commands are supposed to do.

Ip lisp source-locator

Ipv4 alt-vrf

 

Is it even possible to pop the interface facing to the RLOC into an other vrf?

Thanks for your help, I really appreciate it.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jaffer.Razvi
Level 1
Level 1

‎03-22-2016 01:09 PM

I am not sure I understand, do you have a topology and diagram? You can create a separate EID table called management and "client registration interface" command to source it for GETVPN, example:

crypto gdoi group management-group
identity number 2016
server address ipv4 10.255.255.1
client protocol gikev2 default
client registration interface Loopback2016

Under router lisp:

 eid-table vrf management instance-id 1

The loopback2000 would have the VRF management.  

You may need to change the following:

"locator-table default," This could be "management" or "default."

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Jaffer.Razvi
Level 1
Level 1

‎03-22-2016 01:09 PM

I am not sure I understand, do you have a topology and diagram? You can create a separate EID table called management and "client registration interface" command to source it for GETVPN, example:

crypto gdoi group management-group
identity number 2016
server address ipv4 10.255.255.1
client protocol gikev2 default
client registration interface Loopback2016

Under router lisp:

 eid-table vrf management instance-id 1

The loopback2000 would have the VRF management.  

You may need to change the following:

"locator-table default," This could be "management" or "default."

0 Helpful

Go to solution
meiercyrill
Level 1
Level 1
In response to Jaffer.Razvi

‎03-22-2016 02:33 PM

Hey Jaffer Razvi

I fixed the Problem by using

locator-table vrf VRF4RLOCINTERFACE 

under router Lisp

Thanks!

0 Helpful
Customers Also Viewed These Support Documents