Quantcast
Viewing all articles
Browse latest Browse all 10744

DMVPN - phase 3 - OSPF

April 4, 2014, 12:51 pm
$
0
0

Hi,

I'm trying to implement the phase 3 together with OSPF and I found different behaviour depends on IOS version. The new version 15.2 doesn't work but the same config on 12.4 works with no issues:

I send packet from spoke2 (r2) to Loop0 of spoke3 (r3) and I expect to not go through HUB (10.0.0.1):

1) ver 15.2

R2#debug dmvpn all nhrp
DMVPN all level debugging is on
R2#tra
R2#traceroute 33.33.33.33
Type escape sequence to abort.
Tracing the route to 33.33.33.33
VRF info: (vrf in name/id, vrf out name/id)
  1 10.0.0.1 132 msec 128 msec 108 msec
  2 10.0.0.3 176 msec 200 msec 176 msec
R2#
*Apr  4 21:11:49.142: NHRP: NHRP successfully mapped '10.0.0.1' to NBMA 7.7.7.1
*Apr  4 21:11:49.278: NHRP: NHRP successfully mapped '10.0.0.1' to NBMA 7.7.7.1
*Apr  4 21:11:49.414: NHRP: NHRP successfully mapped '10.0.0.1' to NBMA 7.7.7.1
*Apr  4 21:11:49.522: NHRP: NHRP successfully mapped '10.0.0.1' to NBMA 7.7.7.1
*Apr  4 21:11:49.702: NHRP: NHRP successfully mapped '10.0.0.1' to NBMA 7.7.7.1
*Apr  4 21:11:49.902: NHRP: NHRP successfully mapped '10.0.0.1' to NBMA 7.7.7.1
R2#
R2#sh ver | i IOS
Cisco IOS Software, 7200 Software (C7200-ADVENTERPRISEK9-M), Version 15.2(4)S1, RELEASE SOFTWARE (fc1)
R2#

2) ver 12.4

R2#debug dmvpn all nhrp
DMVPN all level debugging is on
R2#tra
R2#traceroute 33.33.33.33

Type escape sequence to abort.
Tracing the route to 33.33.33.33

  1 10.0.0.1 72 msec 72 msec 96 msec
  2 10.0.0.3 124 msec 152 msec 244 msec
R2#
*Apr  4 21:20:49.823: NHRP: Receive Traffic Indication via Tunnel0 vrf 0, packet size: 100
*Apr  4 21:20:49.823:  (F) afn: IPv4(1), type: IP(800), hop: 255, ver: 1
*Apr  4 21:20:49.823:      shtl: 4(NSAP), sstl: 0(NSAP)
*Apr  4 21:20:49.823:  (M) traffic code: redirect(0)
*Apr  4 21:20:49.827:      src NBMA: 7.7.7.1
*Apr  4 21:20:49.827:      src protocol: 10.0.0.1, dst protocol: 10.0.0.2
*Apr  4 21:20:49.827:      Contents of nhrp traffic indication packet:
*Apr  4 21:20:49.827:         45 00 00 1C 00 BF 00 00 02 11 6B CF 0A 00 00 02
*Apr  4 21:20:49.831:         21 21 21 21 C0 05 82 9D 00 08 70
*Apr  4 21:20:49.831: Forward Transit NHS Record Extension(4):
*Apr  4 21:20:49.831: Reverse Transit NHS Record Extension(5):
*Apr  4 21:20:49.831: Authentication Extension(7):
*Apr  4 21:20:49.831:   type:Cleartext(1), data:donttell
*Apr  4 21:20:49.835: NAT address Extension(9):
*Apr  4 21:20:49.835: NHRP: netid_in = 99, to_us = 1
*Apr  4 21:20:49.835: NHRP: netid_out
R2# 0, netid_in 99
*Apr  4 21:20:49.835: NHRP: Tunnel0: Cache add for target 33.33.33.33/32 next-hop 33.33.33.33
*Apr  4 21:20:49.839:
*Apr  4 21:20:49.883: NHRP: Checking for delayed event 0.0.0.0/33.33.33.33 on list (Tunnel0).
*Apr  4 21:20:49.883: NHRP: No node found.
*Apr  4 21:20:49.899: NHRP: Checking for delayed event 0.0.0.0/33.33.33.33 on list (Tunnel0).
*Apr  4 21:20:49.899: NHRP: No node found.
*Apr  4 21:20:49.903: NHRP: Attempting to send packet via DEST 33.33.33.33
*Apr  4 21:20:49.903: NHRP: Encapsulation succeeded.  Tunnel IP addr 7.7.7.1
*Apr  4 21:20:49.903: NHRP: Send Resolution Request via Tunnel0 vrf 0, packet size: 88
*Apr  4 21:20:49.907:  src: 10.0.0.2, dst: 33.33.33.33
*Apr  4 21:20:49.907:  (F) afn: IPv4(1), type: IP(800), hop: 255, ver: 1
*Apr  4 21:20:49.907:      shtl: 4(NSAP), sstl: 0(NSAP)
*Apr  4 21:20:49.907:  (M) flags: "router auth src-stable nat ", reqid: 6
*Apr  4 21:20:49.911:      src NBMA: 7.7.7.2
*Apr  4 21:20:49.911:
R2#    src protocol: 10.0.0.2, dst protocol: 33.33.33.33
*Apr  4 21:20:49.911:  (C-1) code: no error(0)
*Apr  4 21:20:49.911:        prefix: 0, mtu: 1514, hd_time: 7200
*Apr  4 21:20:49.915:        addr_len: 0(NSAP), subaddr_len: 0(NSAP), proto_len: 0, pref: 0
*Apr  4 21:20:49.915: Responder Address Extension(3):
*Apr  4 21:20:49.915: Forward Transit NHS Record Extension(4):
*Apr  4 21:20:49.915: Reverse Transit NHS Record Extension(5):
*Apr  4 21:20:49.915: Authentication Extension(7):
*Apr  4 21:20:49.915:   type:Cleartext(1), data:donttell
*Apr  4 21:20:49.919: NAT address Extension(9):
*Apr  4 21:20:49.919: NHRP: 88 bytes out Tunnel0
*Apr  4 21:20:49.919: NHRP-RATE: Sending initial Resolution Request for 33.33.33.33, reqid 6
*Apr  4 21:20:50.703: NHRP: Receive Resolution Reply via Tunnel0 vrf 0, packet size: 156
*Apr  4 21:20:50.707:  (F) afn: IPv4(1), type: IP(800), hop: 254, ver: 1
*Apr  4 21:20:50.707:      shtl: 4(NSAP), sstl: 0(NSAP)
*Apr  4 21:20:50.707:  (M
R2#) flags: "router auth dst-stable unique src-stable nat ", reqid: 6
*Apr  4 21:20:50.707:      src NBMA: 7.7.7.2
*Apr  4 21:20:50.707:      src protocol: 10.0.0.2, dst protocol: 33.33.33.33
*Apr  4 21:20:50.711:  (C-1) code: no error(0)
*Apr  4 21:20:50.711:        prefix: 24, mtu: 1514, hd_time: 7199
*Apr  4 21:20:50.711:        addr_len: 4(NSAP), subaddr_len: 0(NSAP), proto_len: 4, pref: 0
*Apr  4 21:20:50.711:        client NBMA: 7.7.7.3
*Apr  4 21:20:50.715:        client protocol: 10.0.0.3
*Apr  4 21:20:50.715: Responder Address Extension(3):
*Apr  4 21:20:50.715:  (C) code: no error(0)
*Apr  4 21:20:50.715:        prefix: 0, mtu: 1514, hd_time: 7200
*Apr  4 21:20:50.715:        addr_len: 4(NSAP), subaddr_len: 0(NSAP), proto_len: 4, pref: 0
*Apr  4 21:20:50.715:        client NBMA: 7.7.7.3
*Apr  4 21:20:50.719:        client protocol: 10.0.0.3
*Apr  4 21:20:50.719: Forward Transit NHS Record Extension(4):
*Apr  4 21:20:50.719:  (C-1) code: no error(0)
*Apr  4 21:2
R2#0:50.719:        prefix: 0, mtu: 1514, hd_time: 7200
*Apr  4 21:20:50.719:        addr_len: 4(NSAP), subaddr_len: 0(NSAP), proto_len: 4, pref: 0
*Apr  4 21:20:50.723:        client NBMA: 7.7.7.1
*Apr  4 21:20:50.723:        client protocol: 10.0.0.1
*Apr  4 21:20:50.723: Reverse Transit NHS Record Extension(5):
*Apr  4 21:20:50.723:  (C-1) code: no error(0)
*Apr  4 21:20:50.723:        prefix: 0, mtu: 1514, hd_time: 7200
*Apr  4 21:20:50.727:        addr_len: 4(NSAP), subaddr_len: 0(NSAP), proto_len: 4, pref: 0
*Apr  4 21:20:50.727:        client NBMA: 7.7.7.1
*Apr  4 21:20:50.727:        client protocol: 10.0.0.1
*Apr  4 21:20:50.727: Authentication Extension(7):
*Apr  4 21:20:50.727:   type:Cleartext(1), data:donttell
*Apr  4 21:20:50.731: NAT address Extension(9):
*Apr  4 21:20:50.731: NHRP: netid_in = 0, to_us = 1
*Apr  4 21:20:50.731: NHRP: Checking for delayed event 0.0.0.0/33.33.33.33 on list (Tunnel0).
*Apr  4 21:20:50.731: NHRP: No node found.
*Apr  4 21:2
R2#0:50.735: NHRP: No need to delay processing of resolution event nbma src:7.7.7.2 nbma dst:7.7.7.3
*Apr  4 21:20:50.735: NHRP: Tunnel0: Cache add for target 33.33.33.0/24 next-hop 10.0.0.3
*Apr  4 21:20:50.739:            7.7.7.3
*Apr  4 21:20:50.739: NHRP: Converted internal dynamic cache entry for 33.33.33.0/24 interface Tunnel0 to external
*Apr  4 21:20:50.743: NHRP: Found adjacency for nhop 10.0.0.3
*Apr  4 21:20:50.743: NHRP: Deleting incomplete entry for 33.33.33.33/32 interface Tunnel0
*Apr  4 21:20:50.747: NHRP: Deleting delayed event for NBMA 0.0.0.0 on list (Tunnel0).
*Apr  4 21:20:51.819: NHRP-RATE: Tunnel0: Used 1
R2#traceroute 33.33.33.33

Type escape sequence to abort.
Tracing the route to 33.33.33.33

  1 10.0.0.3 56 msec 84 msec 84 msec
R2#sh ver | i IOS
Cisco IOS Software, 7200 Software (C7200-ADVIPSERVICESK9-M), Version 12.4(11)T1, RELEASE SOFTWARE (fc5)
R2#

------------------------------------------------

 

The config is very simple but maybe I missed something:

HUB:

interface Tunnel0
 ip address 10.0.0.1 255.255.255.0
 ip nhrp authentication donttell
 ip nhrp map multicast dynamic
 ip nhrp network-id 99
 ip nhrp redirect
 ip ospf network point-to-multipoint
 tunnel source GigabitEthernet0/0
 tunnel mode gre multipoint
 tunnel key 100000
 tunnel protection ipsec profile vpnprof

 

SPOKE:

interface Tunnel0
 ip address 10.0.0.2 255.255.255.0
 ip nhrp authentication donttell
 ip nhrp map 10.0.0.1 7.7.7.1
 ip nhrp map multicast 7.7.7.1
 ip nhrp network-id 99
 ip nhrp nhs 10.0.0.1
 ip nhrp shortcut
 ip nhrp redirect
 ip ospf network point-to-multipoint
 tunnel source GigabitEthernet0/0
 tunnel mode gre multipoint
 tunnel key 100000
 tunnel protection ipsec profile vpnprof

Thanks

Hubert

 

 

 

Search
Viewing all articles
Browse latest Browse all 10744

Trending Articles

Scuffham Amps - S-GEAR 2.6.0 VST, AAX, STANDALONE x86 x64 (R2R NO iLok2, +NO...

November 19, 2017, 7:24 am

Practice Sheet of Right form of verbs for HSC Students

September 22, 2019, 11:40 pm

VHSE First (1st) Allotment 2025 - vhscap.kerala.gov.in

May 24, 2025, 11:58 pm

UNIVERSE LEAGUE – UNIVERSE LEAGUE – WAR (We Are Ready) – EP [iTunes Plus M4A]

January 26, 2025, 11:12 am

City Hunter Teledrama – Episode 18 – 07th May 2016

May 6, 2016, 2:05 pm

Comment on Proposed Criteria for Identifying Predatory Conferences by Luke...

July 4, 2016, 3:53 am

Bureau of Internal Revenue: Regional Offices (Directory)

January 9, 2014, 11:06 pm

Kendrick Lamar – Not Like Us (2024) [24Bit-88.2kHz] [PMEDIA] ⭐️

May 14, 2024, 7:14 pm

Inception 2010 Hindi Dual Audio 650MB BRRip 720p ESubs HEVC

December 27, 2016, 4:23 pm

East Hull MD admits sexual assaults after another victim comes forward

January 14, 2013, 12:20 am

Download: FK ft Shenky – Nakuyewa ”Prod by: Shenky”

February 16, 2017, 4:24 pm

R. v. Sargeant, 2023 ONSC 6406 (CanLII)

November 13, 2023, 9:00 pm

Rajasthan Board 10th Result 2016 Roll No wise & Name Wise

August 20, 2016, 5:13 pm

Who’s been sentenced at Northampton Magistrates’ Court

March 30, 2019, 10:00 pm

मतलबी दोस्त स्टेट्स | Matlabi Dost Status in Hindi – Selfish Friends Status

February 13, 2020, 3:12 am

Family cries out as traditional ruler allegedly abducts brother, extorts N2.5m

September 15, 2024, 1:15 am

Long-Running Conflict In Springfield (MA) Gangland Sphere Has Manzi Family &...

December 26, 2017, 3:59 pm

Wondershare Filmora X v10.1.20.16 x64

February 8, 2021, 5:34 am

Man arrested after fracas in flat

January 16, 2017, 10:10 pm

Man charged in ongoing Sexual Assault Investigation Derek Nyilas, 46, Faces...

May 27, 2019, 8:00 am
Search