349
ADVPN configuration examples
IPv4 full-mesh ADVPN configuration example
Network requirements
As shown in Figure 146, the primary and secondary VAM servers manage and maintain VAM client
information for all hubs and spokes. The AAA server performs authentication and accounting for
VAM clients. The two hubs back up each other, and perform data forwarding and route exchange.
• Establish a permanent ADVPN tunnel between each spoke and each hub.
• Establish a temporary ADVPN tunnel dynamically between the two spokes in the same ADVPN
domain.
Figure 146 Network diagram
Table 12 Interface and IP address assignment
Device Interface IP address Device Interface IP address
Hub 1 GE2/0/1 1.0.0.1/24 Spoke 1 GE2/0/1 1.0.0.3/24
Tunnel1 192.168.0.1/24 GE2/0/2 192.168.1.1/24
Hub 2 GE2/0/1 1.0.0.2/24 Tunnel1 192.168.0.3/24
Tunnel1 192.168.0.2/24 Spoke 2 GE2/0/1 1.0.0.4/24
AAA server 1.0.0.10/24 GE2/0/2 192.168.2.1/24
Primary server GE2/0/1 1.0.0.11/24 Tunnel1 192.168.0.4/24
Secondary server GE2/0/1 1.0.0.12/24
Configuring the primary VAM server
1. Configure IP addresses for the interfaces. (Details not shown.)
2. Configure AAA:
# Configure RADIUS scheme abc.
IP network
Spoke1
Spoke2
Site 1
Site 2
Hub1 Hub2
Tunnel1
Tunnel1
Tunnel1 Tunnel1
Primary server
Secondary server
AAA server
GE2/0/1
GE2/0/1
GE2/0/1
GE2/0/1
GE2/0/1
GE2/0/1
GE2/0/2 GE2/0/2
Hub-to-Hub static tunnel
Hub-to-Spoke static tunnel
Spoke-to-Spoke dynamic tunnel
To Next Page
Loading...
Need help?
General
