Solved

How to control EIGRP traffic in hub-spoke

Posted on 2015-02-19
4
116 Views
Last Modified: 2015-02-24
Dear All

I run into a issue of eigrp traffic control in hub-spoke environment. Please see the picture in attachment. R1 headquarter office. and R3 and R4 are remote office. R1 connect R3 and R4 through MPLS vpn- R2. All of routers run eigrp. I want R1 can reach all of routers R3 and R4, but R3 and R4 cannot reach each other. Do you have any suggestion ? I think ACL is a way, but it is a not good one. Do you think so ? Note the link are not frame relay, it is Ethernet cable. Thank you
Untitled.png
0
Comment
Question by:eemoon
  • 2
4 Comments
 
LVL 50

Accepted Solution

by:
Don Johnston earned 334 total points
ID: 40620400
Are you saying that right now R3 can reach R4 and you don't want it to?

If so, you could use static routes and not have a route on R3 to get to R4 (and vice versa).  

Or you could use EIGRP and use a distribute list or route-map to filter out those routes.

Or you could use an ACL to block the traffic entirely.
0
 

Author Comment

by:eemoon
ID: 40620406
Hi Thank you so much for your fast reply. The topology is that there are a lot remote routers, like R3 and R4. ACL and distribute list etc could do it. But it is a complicated. I am thinking and trying using eigrp stub, but now it cannot work yet
0
 
LVL 50

Assisted Solution

by:Don Johnston
Don Johnston earned 334 total points
ID: 40620409
Well, without knowing the details, it's rather difficult to provide the best solution.
0
 
LVL 28

Assisted Solution

by:Predrag Jovic
Predrag Jovic earned 166 total points
ID: 40620543
Check your routing table.
On R3 check is there a route to R4 and check next hop IP address.
This could be case where router (R3) in hub and spoke topology route point to directly unreachable router (R4) as next hop.
R4 should point to R1 as next hop to get to R3.

If routes are OK ... Check your ACLs.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

New Server 172.16.200.2  was moved from behind Router R2 f0/1 to behind router R1 int f/01 and has now address 172.16.100.2. But we want users still to be able to connected to it by old IP. How to do it ? We can used destination NAT (DNAT).  In DNAT…
This article is a guide to configure bridging on Cisco Routers.  This is something I never knew was possible until after making a few phone calls to Cisco.  Using bridging saved our company money by not requiring us to purchase a new switch.  Bridgi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question