It is possibile to activate more than one NHRP instance, for example if ouhave more than one HUB
and you need to open a tunnel toward each of them. To do it, use:
set nhrp X <opzione>
where X can have value from 0 to 255.
If the Hub system is a router Cisco, the Hub configuration will be:
interface Tunnel1
ip address 192.168.10.1 255.255.255.0
no ip redirects
ip nhrp network-id 1000
tunnel source FastEthernet0/0
tunnel mode gre multipoint
end
where it is enough to specify the tunnel mode gre multipoint option.
In the following chapter an example of this solution is described, integrated with the environment
IPSec to guarantee the safety of data transferred and to enable the exchange of messages using
Multicast
HUB & SPOKE SETTINGS WITH CON ENCRYPTED TRAFFIC
The example below shows a Hub&Spoke setting on a router Imola in the role of the Hub and two
more Imola in the Spoke role. The same argument is reopen in the IPSec chapter.
The physical IP of the Hub is 85.34.166.1, the two Spokes have dynamic IP and it is used the one
associated to the mobile interface wwan0
The IP address of the tunnel of the Hub is 172.16.66.254, the two Spokes have respectively
172.16.66.1 and 172.16.66.2.
On the tunnel interface of both routers could be activate a dynamic routing protocol to announce
private LANs.
--------------------------------------
HUB
--------------------------------------
set gre tunnel 0 name tun0
set gre tunnel 0 tunnel-source 85.34.166.1
set gre tunnel 0 tunnel-address 172.16.66.254/24
set gre tunnel 0 multicast
set gre tunnel 0 ttl 64
set gre tunnel 0 keepalive-intval 0
set gre tunnel 0 keepalive-retries 5
set gre tunnel 0 keepalive-responder
set gre tunnel 0 on
set nhrp 0 role server
set nhrp 0 interface tun0
To Next Page
Loading...
Need help?
General
