[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now

x
?
Solved

Change VPN IP of Hub Cisco 871

Posted on 2014-02-04
10
Medium Priority
?
346 Views
Last Modified: 2014-05-07
Simply put I'm not that good on Cisco devices, especially ones where the majority of changes need to be done by command line.  I have Office A, B, & C.  Office A is the hub, Offices B & C are spokes.  There is a DMVPN between them, and only Office A is changing IPs (its getting a new ISP).  Is there a simple way to change the VPNs on the spoke/remote office side to reflect the new IP?  Thanks.
0
Comment
Question by:altitudetek
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
10 Comments
 
LVL 26

Expert Comment

by:Soulja
ID: 39832876
Outside of changing the physical ip address on the wan interface on the spoke and then changing the NHRP map ip address on the spokes, I can't think of anything else you would need to change.

Post a sanitized config of the hub and at least one spoke. That may help us more.
0
 
LVL 5

Expert Comment

by:Martin Tarlink
ID: 39832882
You probably need to change  peer xxx.xxx.xxx.x to reflect your new address.

Could you login to your Router and do #show run command
and paste it here ( for security reason change your IP addreses to aaa.aaa.aaa.aaa bob.bbb.bbb.bbb and ect)

Also here you have sample configuration
http://www.cisco.com/en/US/products/ps5855/products_configuration_example09186a0080ab7073.shtml

Cisco 817 is End-of-life
but here you have Configuration guide for Cisco 819
http://www.cisco.com/en/US/docs/routers/access/800/819/software/configuration/Guide/11vpnezvpn.html
0
 
LVL 26

Expert Comment

by:Soulja
ID: 39832911
Static peer address are not usually used in DMVPN. It defeats the whole purpose of using it.
0
Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

 

Author Comment

by:altitudetek
ID: 39834198
I was able to walk the client (we are an MSP) through getting his WAN interface changed to the new IP as well as the subnet and gateway.  All computers are up as far as Internet goes, but I sill need to change the VPN configs at the two client sites.  I'll report back later with running configs from both of the remote sites.
0
 
LVL 26

Expert Comment

by:Soulja
ID: 39834219
Look under the tunnel interfaces for the nhrp map command.  You should find the current wan ip. That is what you want to change.
0
 
LVL 26

Accepted Solution

by:
Soulja earned 2000 total points
ID: 39834223
This is for the spoke sites.
0
 

Author Comment

by:altitudetek
ID: 39834224
Ok, I will look there and report back.
0
 

Author Comment

by:altitudetek
ID: 39834240
ROUTER#show tunnel endpoints
 Tunnel200 running in multi-GRE/IP mode

 Endpoint transport AAA.AAA.AAA.AAA Refcount 3 Base 0x85E97C14 Create Time 34w0d
   overlay 10.172.255.200 Refcount 2 Parent 0x85E97C14 Create Time 34w0d
   Tunnel Subblocks:
      tunnel-nhrp-sb:
         NHRP subblock has 1 entries


Is that what you were looking for?  This is from one of the spokes.
0
 

Author Comment

by:altitudetek
ID: 39834241
Where AAA.AAA.AAA.AAA = the old IP of the Hub.
0
 
LVL 26

Expert Comment

by:Soulja
ID: 39834465
Sh run int tunnel x
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you’re involved with your company’s wide area network (WAN), you’ve probably heard about SD-WANs. They’re the “boy wonder” of networking, ostensibly allowing companies to replace expensive MPLS lines with low-cost Internet access. But, are they …
Will you be ready when the clock on GDPR compliance runs out? Is GDPR even something you need to worry about? Find out more about the upcoming regulation changes and download our comprehensive GDPR checklist today !
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question