Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
423
Views
3
Helpful
4
Replies

LAN not accessible over MPLS

AmirHamidi
Level 1
Level 1

‎10-10-2014 04:04 AM - edited ‎03-04-2019 11:56 PM

Hello everyone,

I have two sites connected with a Layer 3 MPLS VPN connection from my ISP. At site A I have a 878 router and site B has a 1841 router.

I can ping and access all the resources at site B with no problem. the problem is, besides that I'm not a cisco professional, I can only access 878's management vlan port and no other resource is accessible. the setup is very simple and everything should be accessible from both sites and since its a mpls vpn I'd rather not using vpn or acl's due to unnecessary delay and resource usage. any help would be greatly appreciated.

I'll attach the running configs for both devices.

thanks in advance.

Labels:
Preview file
4 KB
Preview file
2 KB
0 Helpful
4 Replies 4

Bilal Nawaz
VIP Alumni
VIP Alumni

‎10-12-2014 02:45 AM

Hello Amir,

Do the ISP know how to get to your networks. It seems as though you just have default route pointing at the MPLS VPN but how do they know where to route that traffic?

Normally a routing protocol would be used between you and ISP for you to advertise your internal networks to the mpls vpn. This needs to be in agreement between yourselves and the provider on how to exchange routing information to get from site A to site B vice versa.

hth

Bilal 

CCIE #45032

 

Please rate useful posts & remember to mark any solved questions as answered. Thank you.

AmirHamidi
Level 1
Level 1
In response to Bilal Nawaz

‎10-12-2014 12:40 PM

thanks for taking the time Bilal,

yes the ISP knows since they assigned the LAN IP addresses for me and I could ping and telnet to site A's vlan1 ip address so as the problem was a little weird I did a reset factory on 878 and reconfigured it and now I'm able to see all the systems attached to fe0 to 3 ports. at least I can ping them;).

I have to further test the environment to see if any problems still exist.

A side question though is that if the router works fine I'm going to connect it to a 3750G-48ts switch to make the servers reachable from site B, is there any best practice or any points that I should take into account?

regards.

0 Helpful

Tagir Temirgaliyev
Spotlight
Spotlight

‎10-12-2014 09:06 AM

most simple way is to do GRE tunnel

0 Helpful

AmirHamidi
Level 1
Level 1
In response to Tagir Temirgaliyev

‎10-12-2014 12:42 PM

Thanks Tagir,

but I do not see the point since both ends use the same protocol and both ends are supposed to see each other directly.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card