cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
441
Views
0
Helpful
2
Replies

EIGRP DMVPN routing issue

joe.morrison
Level 1
Level 1

Hi,

I am having an issue with a route to an external DMVPN spoke. The external spoke can ping all internal devices and the DMVPN hub can ping all spokes and connected devices(including the external spoke). All internal spokes can ping each other over dynamically established tunnels. So it seems like the IPSEC/GRE portion of my configuration is correct. The problem lies with a few of the internal spokes trying to reach the external spoke.

Sanitized configs attached. Diagram is here http://img152.imageshack.us/img152/9043/layoutfs3.jpg

When I try to ping from I-SPOKE-1 to E-SPOKE-1, I receive the first ping response but all pings after that time out, and I receive the same condition from I-SPOKE-3 to E-SPOKE-1. The really strange part is that I-SPOKE-2 has complete connectivity, and can ping all devices including the external spoke. When I do a 'sh ip route' all internal spokes have the HUB listed as the next hop to the external spoke, so EIGRP seems to be propagating the correct info, but the HUB just isn't routing it properly. The part the really baffles me is Traceroute works end to end with every device… :-/

I have scrutinized every peace of the configurations and can't figure out what my problem is. If anyone has any ideas or links that might help it would be greatly appreciated.

Thanks in advance,

Joe

2 Replies 2

Giuseppe Larosa
Hall of Fame
Hall of Fame

Hello Joe,

the command

no ip split-horizon eigrp 90

is usually needed on hub not on spokes

to create dynamic spoke to spoke tunnels

on the hub you need also

no ip next-hop-self eigrp 90

you can check NHRP issues with

sh ip nhrp

debug nhrp

the fact that first packet is fine has some meaning NHRP activity has to be investigated.

Hope to help

Giuseppe

Mohamed Sobair
Level 7
Level 7

Hi,

Pls post complete config in text files..

HTH

Mohamed

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco