From: SFeldberg@xxxxxxxxxxxxx
Date: Thu Nov 08 2001 - 18:32:25 GMT-3
$)C
Turn off console/terminal logging, turn on logging buffer on both sides of
the connection. Enter "debug ip packet detail" on both sides and then run
your pings. Show your logs to find out whether your policy/access
lists/routing/encapsulation is at the root of your problem.
Steve
Kevin\(>gC6?u
\) To: "Ccielab@Groupstudy. Com"
<y1700@cholli <ccielab@groupstudy.com>
an.net> cc:
Sent by: Subject: VPN tunneling...
nobody@groups
tudy.com
11/08/2001
11:46 AM
Please
respond to
Kevin\(>gC6?u
\)
Network is
r1------fr-------r2--------------r3-----------r4
-------------- o s p f --------- eigrp
< not redi >
I want make the tunnel r1 to r3.
I made a config as following.
R1:::
interface Tunnel0
ip address 192.1.30.1 255.255.255.0
no ip directed-broadcast
tunnel source Loopback0
tunnel destination 137.3.6.6
ip local policy route-map vpn
route-map vpn permit 10
match ip address 101
set interface Tunnel0
access-list 101 deny ip 192.1.32.0 0.0.0.255 137.3.0.0 0.0.255.255
access-list 101 permit ip 192.1.32.0 0.0.0.255 any
R3:::
interface Tunnel0
ip address 192.1.30.2 255.255.255.0
tunnel source Loopback0
tunnel destination 137.3.3.3
access-list 101 deny ip 137.3.0.0 0.0.255.255 192.1.32.0 0.0.0.255
access-list 101 permit ip any 192.1.32.0 0.0.0.255
route-map vpn permit 10
match ip address 101
set interface Tunnel0
!
route-map vpn permit 20
when i extended ping from r1 to r3, i can ping to network directly
connected to r3. But i can't ping other network that r3 learned via Eigrp
from r4.
what can i do for perfect tunnel?
thanks.
This archive was generated by hypermail 2.1.4 : Fri Jun 21 2002 - 06:45:09 GMT-3