DMVPN Routing Protocol

We currently use IPsec for our VPN setup. This includes a single core and approximately 75 (and growing) hubs.  I'm currently labbing a DMVPN environment to run some tests as part of a planned move. 
I know this question has been covered, but wanted to get some fresh perspective.  What routing protocols are you using for DMVPN and what are some of the issues you have faced? 

Adam, 
Most of the setups world wide will use EIGRP or BGP, very few specific cases use RIP passive, some OSPF or static routes.
For scaling and most internet-based setups we do recommend using BGP. It's well known, manageable, allowing load balancing and with a few tweaks perfect for large routing table and decent recovery times.
M.

Similar Messages

  • DMVPN Routing Protocols

    Hi all, I have a couple of questions about routing protocols over  DMVPN.
    I'm a bit rusty so I'd appreciate if there's mistakes in my understanding if you could correct me.
    I understand the EIGRP doesn't ordinarily use the next hop field, receiving routers insert the source of the EIGRP update as the next hop. It uses split horizoning and feasibility tests to detect loops. Over DMVPN you can use the no ip next hop self eigrp command to force eigrp to insert the originating router as the next hop.
    OSPF you can specify different OSPF network types - I cannot remember exactly but it may be broadcast networks or multi-access that don't change the next hop?
    RIPv2 - I do not understand how RIPv2 works with DMVPN (although I know it does) as to my knowledge Ripv2 does indeed change the next hop.
    Can anyone explain how Ripv2 integrates with DMVPN and confirm or correct my understanding of EIGRP/OSPF?
    Thanks very much

    You're correct on EIGRP. OSPF preserves the next hop of the originating router in all modes except point-to-multipoint. RIPv2 always preserves the original next-hop and this can't be turned off... so it works with DMVPN with no modification except for the split-horizon considerations.
    For scaling DMVPN, your worst choice is OSPF because of the large link-state database that forms with so many routers on a single subnet. EIGRP and RIPv2 are very good for DMVPN because the updates are small and simple. These days, I'm moving to BGP for just about all of my DMVPN work... mostly because it scales better than any IGP.

  • CE dial-in to PE. What routing protocol I should use ?

    Hi,
    Situation - CE connected to PE via some ethernet interface (primary) and ISDN dial-up as backup, so I need to use some dynamic routing protocol to distribute customers networks to other sites. Now I'm looking towards extended (triggered) RIP, but maybe there are better choices?
    As I know, only triggereg RIP and OSPF supports 'on-demand' circuits, but OSPF isn't recommended as CE-PE protocol because it has no VRF awareness and we would have to run separate OSPF process for every VRF what isn't nice. This makes RIP only choice? Or there are another possibilities, maybe BGP ?

    Hi,
    over all there is static, RIPv2, EIGRP, OSPF, ISIS and BGP for PE-CE.
    Well floating static alone seems no possibility in your case.
    RIP and EIGRP have some issues when running on redundant links into the VPN (possibility of routing loops), which would be the case with backup active and primary coming back. Depending on the exact topology there might or might not be a workaround.
    OSPF has to be run as separate processes. Might be tough on PE resources, depending on your exact setup details. Other than that it does the job.
    eBGP with ebgp-multihop and static routes is an option. So eBGP doesn´t go down, just is directed over backup link in case primary is down.
    Pick your poison! :-)
    regards
    Martin

  • Dynamic routing protocols over wireless.

    Hello all,
    Are there any issues with running dynamic routing protocols through two access points (1240AG) bridging two LANs that are presumably currently setup with a dynamic routing protocol?
    Thanks,
    Patrick

    There shouldn't be.
    They are acting as bridges ... so no need for a routing protocol in the common broadcast domain.
    Unless you have some flavor of broadcast / multicast control in-place, it should pass the traffic without issue.
    Good Luck
    Scott

  • Dynamic Routing Protocols - what do I really need to know?

    Ok, ridiculously broad question I know but....what I'm trying to figure out is, let's say I'm in a large coproration and I have multiple field sites in different areas of the country so the network setup may be somewhat complex but when it comes to setting up the dynamic routing...is it as simple as let's say, configuring a router to use BGP for whatever portion you designate then just letting it be? is it somewhat challenging to initally configure dynamic routing protocols (i.e. how often have you found yourselves worrying about admin distance, areas (I don't even know what an "area" is yet either so if anyone could explain that I would appreciate it), etc..
    So in short, are dynamic routing protocols "Set it and forget it" or do they require a ton of planning to setup? I'm familliar with the differences between them (i.e. OSPF, RIP, EIGRP,etc..) and the differences in link state and distance vector but I just wanted to ask about the setup of the protocols themselves.
    Thanks!!

    You can exchange routes between protocols with redistribution.
    The problem with the question is, as you say, it is too broad to really answer properly.
    All routing protocols have different considerations so what you might do for EIGRP you may not do with OSPF and BGP is different altogether.
    As a general answer if you are enabling it across a WAN all take a certain amout of planning and design and they all rely heavily on what you have done with your IP addressing in terms of summarisation etc.
    The actual configurations to get a basic setup running are relatively simple, certainly for IGPs, but as your network grows you may find the configurations becoming more complex
    BGP is a very different in that there are many different commands you can use to influence the path traffic takes but even here to setup a very basic BGP peering only requires a few commands.
    But no routing protocol in a large environment should just be configured with no thought as to how it is going to work, traffic paths, number of routes etc.
    You can do it but you may well find as your network grows you will end up having to revisit the whole thing because it is not working as you intended.
    Like I say it's too large a question to really answer because each routing protocol is different and may or may not meet the requirements of the network.
    If there are more specific questions then please feel free to ask.
    Jon

  • Dynamic Routing Protocol Support in Cisco ASA Multiple Context Mode

                       Dear Experts,
    Wold like to know whether dynamic Routing Protocol Support in Cisco ASA Firewall Multiple Context Mode. If yes then please provide OS version and Hardware Model of Cisco ASA Firewall. Appreciate the quick response.  Thanks.

    Hi,
    Check out this document for the information
    http://www.cisco.com/en/US/docs/security/asa/roadmap/asa_new_features.html#wp93116
    Its lists the following for software level 9.0(1)
    Multiple   Context Mode Features
    Dynamic routing in Security   Contexts
    EIGRP and OSPFv2 dynamic   routing protocols are now supported in multiple context mode. OSPFv3, RIP, and multicast routing   are not supported.
    Seems to me you would need some 9.x version to support the above mentioned Dynamic Routing Protocols.
    I don't think its related to the hardware model of the ASA other than that it requires a model that supports Multiple Context Mode. To my understanding the only model that doesnt support that is ASA5505 of the whole ASA5500 and ASA5500-X series.
    Hope this helps
    - Jouni

  • Does inverse arp forward routing protocols?

    I know by doing the, frame-relay map ip <x.x.x.x> (dlci #) broadcast routing protocols work in my lab inside of packet tracer. But when I was just doing inverse arp dynamically, "Serial0/0 (up): ip 80.53.32.1 dlci 25, dynamic, broadcast, CISCO, status defined, active" the routing protocols do not work. Is there a way to have inverse arp to work with broadcast?

    Cool, i'll read it in just a big. Would you also happen to know if a cloud in Packet Tracer is able to work from point-to-point (sub interfaces) frame relay networks? I am attempting it and I can't get the cloud to except more then a few mappings of the sub interfaces dlci's so only half of it works, the rest I get an error message

  • Wireless ad hoc routing protocols

    I have an application that uses wireless ad hoc routing protocols (node-to-node communication).  Has anyone developed any application that implements wireless ad hoc networking protocols, such as route discovery, route maintenance etc. using LabView?  If so, I'd appreciate if you could provide more insight on your application.
    Thank you in advance.

    I've done something like that in the past, but LV was not the interface to the network. 
    Basically, LV was used to control parameters within an embedded system (running Linux-Embedded) and sending commands over serial and / or Ethernet ports.  The system was comprised of multiple boards, each running an OS with 3 layers of communication, some of which were serial, most over Ethernet.
    However, the firmware took care of discovering and setting up the network.  LV simply quieried the system to find out what it had to deal with (how many boards, what type, etc), then it would quiery the application to find out if the expected networks were esblished and to allow permissions over the network. 
    Are you trying to achieve something similar or are you trying to implement (setup) the network directly using LV?
    JLV

  • Routing protocols over IPSEC

    why can't you run a routing protocol in IPSEC tunnel mode? why do you need GRE to run a routing protocol?

    Most of the dynamic routing protocols use multicast addressing or broadcast addressing for the destination address. IPSec processes unicast IP traffic. This is the reason that we have traditionally used GRE which can easily pass multicast and broadcast traffic within the tunnel as the way to run routing protocols over IPSec tunnels. With GRE the multicast routing protocol traffic is encapsulated in a GRE packet which has a unicast source and destination address.
    HTH
    Rick

  • If support dynamic routing protocol?

    Hi, guys
    I know RRAS can support only RIP protocol. However, I cant find any way to configure dynamic routing protocol on TMG, some people say TMG cant support that even rip. That’s right? Is it possible or is there any plug-in can help TMG to do that?
    Nice Day

    Hi,
    Thank you for your post here.
    As far as I know, it is impossible to do that. By default, TMG does not support it.
    http://technet.microsoft.com/en-us/library/ee796231.aspx#t4t4e4t
    Best Regards
    Quan Gu

  • Routing Protocol recommendation for MPLS Network

    I am in the process of building a 14 site MPLS network for voice and data traffic. The vendor installing the network has configured RIPv2 as the routing protocol. I am considering switching this over to EIGRP. Can anyone explain to me why this would be better or should I just stay with RIP.
    Thanks

    Hi Chip,
    Its not very clear whether you are implementing a MPLS network or implementing a Network over MPLS for an end user with 14 sites.
    1) If MPLS network then other IGP variants than OSPF and ISIS best avoided. Now if the choice is between ISIS and OSPF then my personal recommendation would be OSPF. And this decision is purely driven by Operational Considerations rather than any technical advantages. Since at the end of the day what matters is how easy it is to implement add delete or troubleshoot the network.
    2)If for End User then it would not be right to recommend EIGRP or RIP or OSPF without knowing the current size & topology of each of these 14 sites, as well as the desired expansion plans. But if these 14 sites are the only sites and are all standalone branch sites connecting over MPLS VPN then RIP,EIGRP or OSPF can be implemented as per your and customer comfort.
    HTH-Cheers,
    Swaroop

  • Routing protocol over mpls

    Hi  all, 
    i have to implement a network customer over a vpls provider  ( 60 site L2  any to any).
    which protocol for this design ? eigrp, ospf or bgp with advantage or inconvenient?
    thanks,

    If this is to be a layer 2 network for 60 sites with any to any connectivity then you can choose which ever routing protocol you wish since the provider will not be participating in the routing protocol. BGP would be at the bottom of my list for this for several reasons, one of which is that BGP does not do dynamic neighbor discovery and I would not want to manually configure 59 neighbors on each of 60 routers.
    Either OSPF or EIGRP could be good choices. If we knew more about this network it might be possible to favor one or the other. For OSPF it seems likely that you would have a single area and some people might be concerned about 60 peers in a single area. But I think it could be appealing that most routers would go through full adjacency with only two peers where with EIGRP each router would negotiate neighbor relationship with 59 neighbors. Another consideration might be what the topology of the sites is like. If each site has several subnets and if the subnets fall into summarizable ranges then EIGRP might be preferred since it enables summarization from each of the routers which reduces the complexity of the routing table on each neighbor.
    HTH
    Rick

  • Does wccp redirect break routing protocol?

    This may be a dumb question to ask, sorry i don't have equipment to test it at this moment.
    If wccp redirect is configured on an interface running routing protocol (such as eigrp or ospf), will this redirect the "unicast" ospf database or eigrp topology update to WAAS?  and/or will this also redirect ospf & eigrp "multicast" update which maintains neighbor relationship to WAAS?
    Should this type of traffic be denied on wccp redirect-list?
    Thanks

    Hi Joe,
    Since WAAS normally uses TCP promiscuous mode services, based on service group number 61 and 62 - you'll only get TCP redirected ... and neither OSPF nor EIGRP runs on top of TCP, so don't worry.
    If you run a TCP based routing protocol like BGP, it will get redirected.
    Later versions of WAAS don't, by default, try to optimize on BGP, as it has given some problems in the past due to sequence number manipulation.
    Best Regards
    Finn Poulsen

  • How to enable ospf routing protocol using onePK API

    hi,
    I am new to CIsco routers. I want to enable a routing protocol using OnePk API. is it possible to do so?
    Thanks in advance

    Hey @ajeni0001,
    So far, there is not any document related to enabing OSPF using onePK. 
    As soon as I get something in the web I'll let you know.
    Rgrds,
    Martin, IT Specialist

  • Is there a way to upgrade a Cisco 866VAE router to support the OSPF routing protocol?

    I work for the government and we purchased a Cisco 866 VAE router for a project.  Our base network runs OSPF routing protocol and we need to know if there is a way to upgrade the router that we purchased to support this protocol.
    Thanks for any assistance,
    James Reynolds

    Hi,
    I have searched through both the data sheet and the 800 series config guides and
    it looks like there is NO support for OSPF for this router family.
    http://www.cisco.com/c/en/us/products/collateral/routers/800-series-routers/data_sheet_c78-693249.html
    http://www.cisco.com/c/en/us/td/docs/routers/access/800/software/configuration/guide/SCG800Guide.pdf
    Regards
    Alex

Maybe you are looking for