Scott_Ballengee
asked on
Help with IP VPN circuits on 2611
OK tis is the first time I have postede a question because mostly I find the solutions I need with asking. but this one has flustered me.
I am trying to configure Cisco 2611 version 12.3 with IP VPN. The provider is Fibernet.
here is the question. I have asumed that the configs are similar to the existing MPLS configs one the old network. My serials at two of the location are showing UP and UP. But since the IP VPN is new to me I just know I am doing something wrong because I can not get traffic. Here is what my network will be:
There will be 7 location. All with Cisco routers. the main site is where the DIA is located for all site (allinternet traffic will go through here for all sites). The mane site internet traffic works fine but I cna not hit the remote site from main site or vice versa. Serials at both ends are showing UP UP.
Fibernet has assured me it is the same configs as the MPLS sircuits that we currently have, but it still is not working. I am waiting on a Tach to contact me but I think the experts here may help better.
I have posted the config below from te remote site and the main site.
KCTSCALE#show config
Using 1155 out of 29688 bytes
!
version 12.2
service timestamps debug datetime localtime show-timezone
service timestamps log datetime localtime show-timezone
service password-encryption
!
hostname remote site
!
logging buffered 4096 debugging
no logging console
enable secret 5xxxxxxxxxxxxxxxxxxxxxxxx
!
clock timezone EST -5
clock summer-time EDT recurring
ip subnet-zero
!
!
ip domain-list mycompany.com
ip domain-name mycompany.com
ip name-server 10.44.0.30
!
!
!
!
interface Ethernet0/0
description IP VPN Location 5
ip address 10.44.16.1 255.255.252.0
ip helper-address 10.44.0.30
ip accounting output-packets
full-duplex
!
interface Serial0/0
description IP VPN Location 5
ip address 192.168.1.26 255.255.255.252
ip accounting output-packets
no ip route-cache
no ip mroute-cache
service-module t1 timeslots 1-24
no cdp enable
!
router eigrp 150
redistribute static
network 10.0.0.0
auto-summary
!
ip classless
no ip http server
!
no logging trap
!
line con 0
login
line aux 0
line vty 0 4
password 7 xxxxxxxxxxxxxxxxxxxxxx
login
!
ntp clock-period 17208322
ntp server 198.82.1.204
ntp server 10.44.0.30 prefer
end
==========================
Using 1546 out of 155640 bytes
!
! Last configuration change at 09:38:34 EDT Tue Jun 17 2008
! NVRAM config last updated at 09:38:43 EDT Tue Jun 17 2008
!
version 12.3
service timestamps debug datetime localtime show-timezone
service timestamps log datetime localtime show-timezone
service password-encryption
!
hostname Main site
!
logging buffered 4096 debugging
enable secret 5 $xxxxxxxxxxxxxxxxxxxxxxxxx
!
clock timezone EST -5
clock summer-time EDT recurring
ip subnet-zero
!
!
ip domain list mycompany.com
ip domain name mycompany.com
ip name-server 10.44.0.30
!
!
!
!
!
interface FastEthernet0/0
description Mainsite
ip address 10.44.0.2 255.255.252.0
ip accounting output-packets
duplex auto
speed auto
no cdp enable
!
interface Serial0/0
description Ceredo
ip address 192.168.1.10 255.255.255.252
ip accounting output-packets
service-module t1 timeslots 1-24
!
interface FastEthernet0/1
description Uplink to INternet for all sites
ip address 10.44.40.1 255.255.252.0
ip accounting output-packets
duplex auto
speed auto
!
interface FastEthernet1/0
no ip address
shutdown
duplex auto
speed auto
!
router eigrp 150
redistribute static
passive-interface FastEthernet0/1
network 10.0.0.0
auto-summary
!
no ip http server
ip classless
ip route 0.0.0.0 0.0.0.0 FastEthernet0/1 10.44.40.2
!
!
no logging trap
logging facility local2
!
line con 0
login
line aux 0
password 7 xxxxxxxxxxxxxxxxxxxxxxxx
login
line vty 0 4
password 7 xxxxxxxxxxxxxxxxxxxxxxxxx
login
!
ntp clock-period 17176787
ntp server 198.82.1.204
ntp server 10.44.0.30 prefer
!
end
I am trying to configure Cisco 2611 version 12.3 with IP VPN. The provider is Fibernet.
here is the question. I have asumed that the configs are similar to the existing MPLS configs one the old network. My serials at two of the location are showing UP and UP. But since the IP VPN is new to me I just know I am doing something wrong because I can not get traffic. Here is what my network will be:
There will be 7 location. All with Cisco routers. the main site is where the DIA is located for all site (allinternet traffic will go through here for all sites). The mane site internet traffic works fine but I cna not hit the remote site from main site or vice versa. Serials at both ends are showing UP UP.
Fibernet has assured me it is the same configs as the MPLS sircuits that we currently have, but it still is not working. I am waiting on a Tach to contact me but I think the experts here may help better.
I have posted the config below from te remote site and the main site.
KCTSCALE#show config
Using 1155 out of 29688 bytes
!
version 12.2
service timestamps debug datetime localtime show-timezone
service timestamps log datetime localtime show-timezone
service password-encryption
!
hostname remote site
!
logging buffered 4096 debugging
no logging console
enable secret 5xxxxxxxxxxxxxxxxxxxxxxxx
!
clock timezone EST -5
clock summer-time EDT recurring
ip subnet-zero
!
!
ip domain-list mycompany.com
ip domain-name mycompany.com
ip name-server 10.44.0.30
!
!
!
!
interface Ethernet0/0
description IP VPN Location 5
ip address 10.44.16.1 255.255.252.0
ip helper-address 10.44.0.30
ip accounting output-packets
full-duplex
!
interface Serial0/0
description IP VPN Location 5
ip address 192.168.1.26 255.255.255.252
ip accounting output-packets
no ip route-cache
no ip mroute-cache
service-module t1 timeslots 1-24
no cdp enable
!
router eigrp 150
redistribute static
network 10.0.0.0
auto-summary
!
ip classless
no ip http server
!
no logging trap
!
line con 0
login
line aux 0
line vty 0 4
password 7 xxxxxxxxxxxxxxxxxxxxxx
login
!
ntp clock-period 17208322
ntp server 198.82.1.204
ntp server 10.44.0.30 prefer
end
==========================
Using 1546 out of 155640 bytes
!
! Last configuration change at 09:38:34 EDT Tue Jun 17 2008
! NVRAM config last updated at 09:38:43 EDT Tue Jun 17 2008
!
version 12.3
service timestamps debug datetime localtime show-timezone
service timestamps log datetime localtime show-timezone
service password-encryption
!
hostname Main site
!
logging buffered 4096 debugging
enable secret 5 $xxxxxxxxxxxxxxxxxxxxxxxxx
!
clock timezone EST -5
clock summer-time EDT recurring
ip subnet-zero
!
!
ip domain list mycompany.com
ip domain name mycompany.com
ip name-server 10.44.0.30
!
!
!
!
!
interface FastEthernet0/0
description Mainsite
ip address 10.44.0.2 255.255.252.0
ip accounting output-packets
duplex auto
speed auto
no cdp enable
!
interface Serial0/0
description Ceredo
ip address 192.168.1.10 255.255.255.252
ip accounting output-packets
service-module t1 timeslots 1-24
!
interface FastEthernet0/1
description Uplink to INternet for all sites
ip address 10.44.40.1 255.255.252.0
ip accounting output-packets
duplex auto
speed auto
!
interface FastEthernet1/0
no ip address
shutdown
duplex auto
speed auto
!
router eigrp 150
redistribute static
passive-interface FastEthernet0/1
network 10.0.0.0
auto-summary
!
no ip http server
ip classless
ip route 0.0.0.0 0.0.0.0 FastEthernet0/1 10.44.40.2
!
!
no logging trap
logging facility local2
!
line con 0
login
line aux 0
password 7 xxxxxxxxxxxxxxxxxxxxxxxx
login
line vty 0 4
password 7 xxxxxxxxxxxxxxxxxxxxxxxxx
login
!
ntp clock-period 17176787
ntp server 198.82.1.204
ntp server 10.44.0.30 prefer
!
end
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
For example:
interface Tunnel0
description VPN Tunnel to to main site
bandwidth 1536
ip address 192.168.0.1 255.255.255.252
no ip redirects
no ip proxy-arp
ip mtu 1426
tunnel source Serial0/0
tunnel destination (external IP)
On the other end:
interface Tunnel0
description VPN Tunnel to to remote site
bandwidth 1536
ip address 192.168.0.2 255.255.255.252
no ip redirects
no ip proxy-arp
ip mtu 1426
tunnel source Serial0/0
tunnel destination (external IP)