EIGRP Routing across MPLS Cloud

I appologize if this has been covered but I dont see any exact hits...
We are working with our Service Provider to implement MPLS between our remote sites and main campus. We are currently using PtoP T1 in a hub and spoke model. We are running EIGRP in our entire environment.
We would like to continue to run EIGRP in our environment but the SP does not support this protocol through the cloud. I would prefer not to introduce any new routing protocols into our environment such as BGP. (I believe SP is running BGP).
I have read snippits that I can us e GRE tunnel between sites and send EIGRP routing updates via this tunnel.
Can anyone support this method or are there better alternatives? If I implement GRE, I will still need to configure static routes so GRE knows how to reach the remote sites. I also cannot find any literature on how to configure GRE tunnels and use them ONLY for routing updates. I would think sending all traffic via GRE would cause additional overhead.
I will also have a need to send Multicast traffic between sites. I have read that GRE is the way to do this. To me it seems GRE will serve dual purposes.. first to allowing Dynamic routing updates between sites and also to allow Multicast traffic.
I appreciate any comments or suggestions!

Hello Phil,
using GRE tunnels to build an overlay would deny one of the greatest benefits of MPLS L3 VPN: the peer model where each CE talks only with local PE node.
unless you have a small number of sites this approach is not recommended.
What if a new site is added in the future? you would need to configure a tunnel GRE to the new site in each of the existing sites.
You could run a DMVPN  ( that is to use mGRE) to solve this but it has some complexity.
You can run BGP without using mutual redistribution: BGP allows to advertise internal networks using the network command even if they are not directly connected to the CE router but learned via EIGRP.
So it is enough to redistribute only BGP into EIGRP by setting a default seed metric (it requires five values in EIGRP and it is necessary or redistribution will not occur)
router bgp 65001
neigh PE-address remote-as SP-AS-number
network 10.10.10.0 mask 255.255.255.0
network 10.10.20.0 mask 255.255.254.0
no auto-summary
! note:if auto-summary is disabled you need to provide the exact mask / prefix length
router eigrp 100
redistribute bgp 65001
default-metric 10000 1000 255 1 1500
! BW delay reliabilty load MTU
Hope to help
Giuseppe

Similar Messages

  • Path Selection for Routes Across MPLS Network

    Customer hub site has two CE routers with two links connected to two seperate PE routers in the Carrier's MPLS network. At the customer's remote site one CE router on a single link is connected to PE router in MPLS network.
    How can I configure the CE routers at the hub site to advertised the same network across the MPLS network to the CE router at the remote site? Also, how can I configure the CE router at the remote site to select on of the router as the primary and the other as secondary? Can I use local-preference on the CE router at the remote site to selected on path over the other.
    I'm not sure if this makes any sense. Any help will be appreciated. Thanks

    Even with multiple RDs for VRFs belonging to the same VPN, you still need IBGP multipath, correct? Multiple RDs is just to get around the RR restriction.
    Also, you posted this message a while back:
    "If you have many VPN customers all using the same addresses (most likely rfc1918), the fact that they have different RDs and that the PE prepends the RD to the prefixes exchanged between PEs will make the same prefixes different in the MPLS VPN core
    cust1 advertises 192.168.1.0/24 with RD 1:1 therefore
    VPNv4 prefix is 1:1:192.168.1.0
    cust2 advertises 192.168.1.0/24 with RD 1:2 therefore
    VPNv4 prefix is 1:2:192.168.1.0"
    My test lab does not support the IBGP multipath command, and thus even with different RDs, it still only installs one best path.
    I understand that RD = make unique VPNv4 routes in SP space, and that RT = what to import into the VRF. However, I am having a hard time visualizing the scenario with mutiple RDs for the same VPN for load balancing purposes. I am trying to understand the logic behind it.
    Per your example, if both 1:1 and 1:2 are received by the remote PE, assuming IBGP multipath is enabled, why would the remote PE load balance between the two links? Why would it assume that the hub subnets are reachable via two different PEs, and that it's not two different, isolated VPNs altogether?
    Is it b/c you imported both 1:1 and 1:2 into a VRF at the remote PE?

  • Multiple Customer Default Routes over MPLS Cloud

    I have a customer with a Core network connected together over VPLS, and runnng EIGRP as the IGP. For the branch offices the are using MPLS, and SP requires us to use BGP when sending routes to them.
    We have the core site, A, B, C. Site A&B have an internet connection. I want to have 1/2 the branches going to Site A and 1/2 going to Site B, and the SiteA orB and Site C as a backup. there is a single VRF. The SP will not make any changes for us...so I have been told. So I need to find out if there is a way to do this without SP involvement. I have tried Communities (CE side) with no Luck unless I make changes in the P/PE Net.
    Attached is a drawing of the high level network.
    Any Ideas....

    Some addtional informtion
    Handling Multiple Default Routes with BGP as PE-CE Protocol
    http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/L3VPNCon.html#wp321066
    Layer 3 MPLS VPN Enterprise Consumer Guide Version 2
    This section tells almost what I want to do. But I want the left side of the diagram to go left...and the right side to go right.

  • OSPF design for branch offices across MPLS

    Hello fellow networking engineers,
    I want to implement OSPF in our network. We have multiple branch offices, all linked to an MPLS backbone.
    I know that in order to get linked areas, I would need to setup GRE tunnels between them, but I want to avoid static/manual configurations as much as possible. With multiple sites, it would become cumbersome to create a mesh real fast.
    Is running OSPF independent areas at each site, and simply redistributing over eBGP a valid solution? This will host voice and data, and will failover to VPN connection (Cisco ASAs) if the MPLS goes down.
    For the VPN backup links, I thought of two options. Either simply using the default route to send everything to the ASA in case of MPLS "death", or inject routes using IP SLA...
    Any input would be appreciated.

    Marc
    You don't GRE tunnels to link your areas if that is what you want to do.
    If the SP supports it then you can exchange your OSPF routes between areas and they will still be seen as inter area routes rather than OSPF externals which they would if you simply treated each area as isolated from each other.
    In effect the MPLS network becomes an OSPF super backbone area and your main site would also be part of the backbone area with all your other sites having an area each.
    You still redistribute your OSPF routes into BGP but with some extra configuration on both your CEs and the SP PE devices.
    Like I say you would need to check with your SP but it is possible.
    Whether or not you need or want it I don't know.
    Your other option is as you have proposed to treat each OSPF area as an isolated one and simply redistribute into OSPF at each CE. Then within each site all non local routes would be seen as OSPF external routes.
    Either way in terms of backup I would keep it simple and use a default route at each site pointing to the ASA device. I can't see what you gain from IP SLA because if the main MPLS link goes down at any site the only other path they have out is via the ASA so there is nothing really worth tracking.
    The only other thing I would mention is remote site to remote site traffic. If there is any then presumably with your VPN tunnels you would be doing a sort of hub and spoke where the hub is the main site so you may need to think about traffic coming in from one VPN tunnel and going out to another VPN tunnel on the main site ASA.
    This would only really be needed if two or more sites had to use their backup links at the same time.
    In terms of which is better ie. OSPF inter area across the MPLS cloud or OSPF externals I can't really say to be honest. With the MPLS networks i have worked on we ran EIGRP and simply treated each remote site as an isolated AS.
    If you are already running OSPF then you may want to preserve your existing areas so it would make sense to go with the inter area option.
    If it is a new setup then I don't really know the pros and cons of either so can't really comment.
    Perhaps others may add to the thread with their thoughts.
    Jon

  • Shared Firewall in MPLS cloud

    Hi. I have an MPLS cloud on which i want to provide basic Internet connectivity for customers in the cloud. This will not be for VPN services, simply http, ftp etc (possibly some inbound NAT for webservers). I have a 7200VXR for the job. My plan is to set this up as an effective PE in the cloud and use 'NAT VRF AWARE' features to NAT networks in each VRF to Single public IP (currently this is 1 per VRF from a large pool). I cant see a reason for this not working but i wanted to get advice on this. I am also unsure as to how the public facing interface will be seen by the customer VRF since it will not be statically labeled with any VRF.
    Any thoughts on this?
    Thanks in advance.

    Hi Swaroop, I'm trying to follow your advice regarding the global default. I have 2 vrf's I'll be using called CUST1 and CUST2. Traffic will come into the e2/0.1 sub interface and should then be NATed to 210.10.10.17 (global interface not VRF). If i use static translations inside they work fine. Dynamic however translations do not seem to work. I have really tried to follow Cisco's documentation, but I'm not having much luck. Do you notice anything incorrect with the following.
    interface Ethernet2/0.1
    description "CUST1 Interface"
    encapsulation dot1Q 10
    ip vrf forwarding CUST1
    ip address 172.16.1.10 255.255.255.252
    ip nat inside
    ip virtual-reassembly
    interface FastEthernet0/0
    description "OUTSIDE INT"
    ip address 210.10.10.17 255.255.255.0
    ip nat outside
    ip virtual-reassembly
    duplex full
    ip nat pool CUST1_POOL 210.10.10.17 210.10.10.17 netmask 255.255.255.0
    ip nat inside source list 1 pool CUST1_POOL vrf CUST1 overload
    access-list 1 permit 172.16.0.0 0.0.255.255 log
    ip route vrf CUST1 0.0.0.0 0.0.0.0 FastEthernet0/0 210.10.10.254 global
    Any help you can give me would be very appreciated.
    Thanks
    Dan.

  • Routing to MPLS network

    Hi,
    We have several branch offices connected via a managed MPLS network. Each MPLS router in the branch office is connected to the local LAN switch, with its separate firewall and internet access router. How do we direct traffic from the local network (unmanaged) to the private IP addresses in the MPLS network (managed)? Can static routes be configured on the ASA5505 firewall to route traffic to MPLS router?
    ISP router>local router>ASA5505 firewall>LAN switch>MPLS router>MPLS cloud.

    Said
    Is the LAN switch layer 2 only or layer 3 capable. If you do not have access to the MPLS router you have 2 options
    1) Add a route on the ASA for the private MPLS networks pointing to the MPLS router. You will need to enable hairpinning on the ASA.
    Set the default-gateway of the clients on your LAN switch to be the ASA.
    2) If your switch is a Layer 3 switch then you can do this in a much cleaner way. Create the L3 vlan interface(s) for the client vlan(s) on the switch and then you can use statics on the L3 switch eg.
    ip route 0.0.0.0 0.0.0.0 "ASA inside interface"
    ip route "MPLS private net" "subnet mask" "MPLS router inside interface"
    Jon

  • Monitoring flap in MPLS cloud

    Hi,
    I'm having 2 MPLS links over 2 different service provider. BGP is configured. Sometimes we get disconnection for few mins in 2 or 3 days, it's not consistent. The logs did not show any flapping on the interface. What can i do now to help the situation? Or even gather some prove that the flap is within the MPLS cloud?
    Thanks,
    Steven

    Hi,
    what do you mean by disconnected? does that simply mean no connectivity, but still all routing info in place?
    Then it sounds like a MPLS LSP problem in the provider backbone. MPLS VPN packets can only be delivered when a LSP exists. Routing packets however can be delivered through IP in the provider backbone without LSP. This is because VPN routing information is transported by BGP from PE to PE (loopbacks).
    So a failed LSP disrupts your data plane (IP packets sent) but not the control plane (BGP).
    Unfortunately for you, there is no way to detect that from a CE control plane perspective. So even the typical backup scenarios fail here like floating static, dialer watch and the like.
    Hope this helps
    Martin

  • Can I use EIGRP as a MPLS Backbone IGP

    Hi,
    Always believed MPLS only runs on IS-IS and OSPF as backbone IGP. Is it possible to use EIGRP as a backbone IGP as well?
    My customer uses EIGRP right now and we want to migrate VRF-lite to a real MPLS cloud. Can I re-use EIGRP?
    Best regards,
    Peter

    Hi Peter,
    For plain MPLS, there is no restriction that you need OSPF or ISIS. But when you plan to implement MPLS TE, you need a link state protocol. So if you dont have any plan to go for Traffic Engg, I think you can continue with EIGRP.
    HTH,
    Nagendra

  • Wi-fi bridge between two routers TP-LINK WR841ND (WDS).  HP 1536 dnf MFP connect to one of this routers (copper).  My Ipad or Iphone can't find HP 1536 dnf MFP (using Eprint). Ipad and iphone connect   to router across WiFi.

    Hello.
    I have wi-fi bridge between two routers TP-LINK WR841ND.
    The name of this technology - WDS.
    HP Laser JET 1536 dnf MFP connect to one of this routers (copper).
    Second device (my NETBOOK) connect to second router (WiFi).
    I have good communication between NETBOOK and HP Laser JET 1536 dnf MFP via WiFI-bridge.
    In usual case NETBOOK can find (and can Ping) network printer and make a print some files.
    But my Ipad or Iphone can't find HP Laser JET 1536 dnf MFP (using Eprint). Ipad and iphone connect
    to router across WiFi.
    Please, help!

    Are you using the ePrint Mobile App, the ePrint Printer Control App, or just trying to send an email to the printer's ePrint email address?
    Does AirPrint work?
    -------------How do I give Kudos? | How do I mark a post as Solved? --------------------------------------------------------

  • Eigrp routes doesn't refresh when neighbor down

    hi guys, need some tips for troubleshooting an ongoing issue, but can't do the changes anymore untill next call and yes the issue is still ongoing.
                           WAN1 <--------------------------------------------------------------------------------------------> WAN2
                               |                                                                                                                                       |  
                       metro ethernet ME-3600X-A  <----> ME-3600X-B  <----->  ME-3600X-C<----> c3560v2
    I have 3 metro ethernet switches and a c3560v2 switch connected as above. The WAN1 redistributes all routes to ME-3600X-A's eigrp and WAN2 redistributes all routes to c3560v2 's eigrp and these two propagates all their eigrp routes to ME-3600X-B and ME-3600X-C  which are in the same eigrp AS. And all link/connections are point-to-point.
    Now, when the link between ME-3600X-B  <----> ME-3600X-C is physically disconnected, the ME-3600X-C's eigrp still points the route(s) to the ME-3600X-B's p2p ip as its next-hop - which is down(neighborship between them goes down, but still the routes doesn't refresh/rebuild). However, switch c3560v2 has route to the same network learnt from WAN2.
    Wonder why, need inputs please? Thanks.

    You shouldn't reference the CrystalReportViewer in the Page_Load handler, since there's issues with serialization of the report source:
    http://devlibrary.businessobjects.com/BusinessObjectsXIR2SP2/
    en/en/CrystalReports_dotNET_SDK/crsdk_net_doc/doc/
    crsdk_net_doc/html/
    crconsdkfundamentalspersistencepageloadeventhandler.htm
    In fact, you should save the report source in session, and bind it to the viewer on post-back.  Sample code can be found here:
    http://resources.businessobjects.com/support/communitycs/
    FilesAndUpdates/sample_applications_for_.NET_developers.pdf
    Sincerely,
    Ted Ueda

  • Full internet routes in MPLS-VRF

    hi~ all
    I just have some confused , whether it's good way load full internet routes in MPLS VRF , which there's no any service routing in core network but topology routing . but there's dual upstream ISP connecting ASBR , I'm afraid if I load these two full internet routes into VRF on 7600 , is it possible ? does it take so long time for loading routes in VRF ?
    could someone give me some proposal about it or some experience about internet routes in VRF , thanks.

    Its not a good practise to load all the internet rouetes in the vrf. Do use vrf leaking. For this create a vrf of named internet which will be loaded with the default route and export that route with the rd and mport that route in your particular vrf. With this you will be having only 1 route in the vrf.
    regards
    shivlu

  • ISR router EIGRP Route Tag

    Hi,
    Wondering any one has successfully set route tag for EIGRP routes?
    What I am trying to achieve here is to set route tag for the summary routes of the connected interfaces and subnets of some other connected interfaces.
    Let's say an ISR router R1 with IOS 15.1(4)M3 has three interfaces running with EIGRP.  
    Interface Gi0/0 
    ip add 172.16.0.1/24
    summary-add 172.16.0.0/16
    Interface Gi0/1 
    ip add 172.16.1.1/24
    summary-add 172.16.0.0/16
    Interface Gi0/2 
    ip add 192.168.2.1/24
    I am having difficulty to set route tag for summary add 172.16.0.0/16 and 192.168.2.0/24 before they get advertised to another router.
    Any idea please?
    Thanks
    Cedar

    Duplicate posts.  
    Go here:  https://supportforums.cisco.com/discussion/12256521/isr-router-eigrp-route-tag

  • To Clear A PAssive EIGRP Route

    We have a Cisco router which has learned an incorrect passive eigrp route; we would like to clear this route from the router but don't know how.
    We'd like to avoid rebooting the router if possible.
    Any info on this is appreciated.

    Hello,
    where from the route was injected into EIGRP? As long as the route is injected it will be announced to all EIGRP routers. "Passive" means just, that the route is learned and no queries are unanswered. This is the normal state of any route in EIGRP.
    So to get rid of the route you should have a look at the router injecting it and reconfigure it to not advertise it.
    Hope this helps! please rate all posts.
    Regards, Martin

  • Overwrite dynamic (eigrp) route when external dials into router

    Hi
    I would like to find a way to overwrite a dynamic (eigrp) route with a routing entry pointing to a dialer interface, when someone has dialed into this dialer interface.
    Does someone of you knows a way how this can be done?
    Thanks in advance and kind regards
    Mark

    Thanks tor you reply.
    Until now I have heard of reverse route injection only in conjunction with setting up vpn connections. And a quick search doesn't shows much. But I keep on searching.
    Maybe I should tell something more about my setup. There are 2 routers (both 2612). On the LAN side the do hsrp. And on the WAN side each of them has 2 BRI interfaces connected to a multi-line-hunting-group for dialin and dialout. On the LAN I do eigrp and so overwrite a static route pointing to the dialer on the second router because of an administrativ distance of 200 at the static route.
    When dialing out everything works fine. But when someone dials in to the second router (which is the hsrp standby one) the routing table of this router isn't changed/updated. I Bad expected something like a "directly connected" event puts a new entry in the routing table pointing to the now connected dialer Interface. But this does not happen.
    What I'm looking for is a way how this can be done, so that these is a backward pointing route on the hsrp standby router for the dialed in sides.
    Is there a way to do this?
    Regards
    Mark

  • Eigrp routes

    How would I stop eigrp routes being advertised so that it doesnt keep bringing up my isdn line, what do I put on the access list ?

    access-list 100 deny eigrp any any
    access-list 100 permit ip any any
    !--- EIGRP routing packets are denied in the dialer-list.
    !--- This prevents eigrp packets from keeping the link up.
    !--- Adjust the interesting traffic depending on your traffic definitions.
    dialer-list 1 protocol ip list 100
    http://www.cisco.com/en/US/tech/tk713/tk237/technologies_configuration_example09186a00800a3b77.shtml

Maybe you are looking for

  • How do I set background color of cell using JTable?

    Hello all! I have a question on the use of JTables. I am using a JDialog consisting of a JTable and a number of buttons to insert and to select OK or cancel. Everything is working perfectly, but I now must add editing capabilities to prevent invalid

  • I'm new to Macs, have a question about a 20" cinema display

    Hi, I just got a used G5 with a 20" display. I am new to Macs, just trying to figure a few things out. The display is great, but when it comes to text some letters are not as sharp as I want them to be, plus the monitor is giving me a headache/eye st

  • New movie not showing up in iCloud

    New movie "X-Men:Days of Future Past" not showing up in iCloud. Thanks

  • Web Item - Table

    Hi all, Can anyone tell me how I can increase the cell padding ie the cell size and also the font size inside the cell for table web item.  There is no property to achieve this, we can change the static html code but that doesn't solve my problem.  D

  • Issue with FM HR_MAINTAIN_MASTERDATA

    Hello, I'm using FM HR_MAINTAIN_MASTERDATA to update an infotype(specific infotype 9nnn). the PBO of this infotype default values for some fields : example : field1 = 2000 The issue is that when I try to run the FM with another value for this field f