05-20-2010 02:42 PM - edited 03-04-2019 08:33 AM
We have a remote office using VPN to connect HQ. Currently we added MPLS to that office for primary use and want to use that VPN as backup.
VPN use EIGRP. The question is since we redistribute EIGRP into BPG for MPLS, it show it's AD as 170 (E EIGRP). How can we make that MPLS to use as primary path to our HQ. Is that a way to change AD or any other way? Since VPN has AD of 90, it will always take that route.
05-20-2010 02:59 PM
Is the switch a L3 switch or is the HSRP running between the 2 routers. It's not clear because if the routers were running HSRP then simply make the MPLS one active HSRP, track the WAN interface and make sure the 2 routers do not exchange routes with each other.
In addition BGP should take precedence over EIGRP internal on the MPLS router so i'm guessing there are L3 switches receiving EIGRP routes.
Can you clarify ?
Jon
05-20-2010 03:13 PM
Thanks Jon
It's layer 2 switch. Routers were running HSRP. on MPLS router, we redistribute BGP to EIGRP.
05-20-2010 03:16 PM
Thanks Jon
It's layer 2 switch. Routers were running HSRP. on MPLS router, we redistribute BGP to EIGRP.
So if you make the MPLS router the HSRP active router and it receives BGP routes those routes should have an AD of 20 which should take preference over EIGRP.
Are the same routes being advertised through MPLS and down the VPN link ?
Jon
05-20-2010 03:40 PM
Just to add to previous post.
If, for some reason your BGP routes are not being preferred then you can simply do what i mentioned before ie. make the LAN interfaces passive under EIGRP. Then neither router will be aware of the others routes. Then simply make sure the MPLS router is active and track the WAN interface. If it fails the HSRP active gateway will fall over to the VPN router.
Jon
05-21-2010 12:02 AM
You may complete this task by using the "distance" command under the eigrp process command. set the distance on VPN router for incoming routes to 171 and routes towards MPLS will be preferred down the line.
In sytax it will say for source address which the the next-hop router sending the updates and access-list at the end of the command. which specifies the routes to match.
Also, do you have any downstream routers at Branch office ? if you have you consider putting distance command to the whole of eigrp process to change the internal to 90 and external to 89 than you may achieve the same task with out touching the edge routers.
HTH
Hitesh Vinzoda
Please rate helpful posts.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide