Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Summarize route issue

Dears,

   I have the below network in my work. the problem is that some IPs which are behind TMG (10.100.100.90 or 10.100.101.103 or 10.100.100.190) (suddenly) are not reachable to real machines (196.2.x.b or 196.2.x.a). the strange this is that the connectivity is restored once I add more specific route on the cisco router like this (ip route 10.100.100.90 255.255.255.255 196.2.x.c). i don't know what is the problem with these IPs although the same IPs are working before normally with only summarized route.

hope some one helps me in this issue.

      Route issue.jpg

regards,

Everyone's tags (5)
3 REPLIES
Cisco Employee

Re: Summarize route issue

Hi Ahmed,

You should look at what routes, other than the host routes, you have on 7204vxr to get to 10.100.101.20 and 10.100.101.90.

Regards

Harold Ritter
Sr. Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México
Community Member

Re: Summarize route issue

thanks Harold for your reply, but there is no route at all regard these IPs except the summarization route also i issued this command in cisco router

  • also I can ping these IPs from real Machines (196.2.x.b or 196.2.x.a) but  i cannot RDP them or open the share on them. i believe that the problem is in L4-L7 protocols/applications.
  • By the-way the cisco router is just L3 router (it is not firewall
  • it is really strange issue, as these IPs are reachable before without needing any specific route for them.
  • also when i issue show ip routein the router for them (as illustrated in the picture above) it shows196.2.x.c as next hop (normally), but i cannot RDP or open in share on them.

i'm ready to send you any log or debug you want to resolve this issue.

Cisco Employee

Re: Summarize route issue

Hi Ahmed,

You mention that this worked before. What has changed since then? Can you telnet from the router to port 3389 (TCP port for RDP) on one of the workstations/servers behind the TMG to see if it works.

Regards

Harold Ritter
Sr. Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México
260
Views
0
Helpful
3
Replies
CreatePlease to create content