| Hello Stuart,
Thanks for the update. I read some further (I almost always configure both timers as well), and indeed these options are needed for spoke-spoke communication. But now from the top of my head, if you don't want to have spoke-spoke communication (whether it's DMVPN Phase 3 with shortcut switching or via the hub), wouldn't you need to configure stub routing on the EIGRP spokes? Otherwise, the EIGRP process wants to setup full EIGRP routing and that might cause the EIGRP flapping as well?
Just an idea that came to my mind...
Pieter-Jan On 21 jul 2009, at 21:14, Stuart Hare wrote: Pieter, I would agree that these are required for certain DMVPN scenarios, but not necessarily important in Simons case. These settings are only required in DMVPN if you wish to allow direct spoke to spoke tunnels, i.e. to prevent spoke to hub to spoke traffic. If the task or scenario does not require spoke to spoke tunnels then these settings are not required in the configuration.
Simon, you may need to adjust your eigrp timers if your DMVPN runs across some poor performance wan links for instance ( we have had to do just this in a production DMVPN environment ), but if this is a lab scenario then I would be surprised. Are you doing this in dynamips perhaps? Stu
2009/7/21 Pieter-Jan Nefkens <[email protected]> Hi Simon,
The hold-timers are not that important, yes, you need to change them, but mainly in very large-scale deployments.
More important is to disable the split-horizon and the next-hop-self option.
Check the DMVPN Design guide at
http://www.cisco.com/application/pdf/en/us/guest/netsol/ns171/c649/ccmigration_09186a008075ea98.pdf
Page 2-18, EIGRP configuration explains it all
Kind regards
Pieter-Jan On 21 jul 2009, at 18:46, Simon Baumann wrote: I don't have it anymore, unfortunately. But I can rebuild it. Isakmp
policy, Ipsec policy,
eigrp process,tunnel + loopback interfaces are enough?
Cheers
Simon
Am 21.07.2009 um 18:38 schrieb Tyson Scott:
Simon can you post your configuration.
Regards,
Tyson Scott - CCIE #13513 R&S and Security
Technical Instructor - IPexpert, Inc.
Telephone: +1.810.326.1444
Cell: +1.248.504.7309
Fax: +1.810.454.0130
Mailto: [email protected]
Join our free online support and peer group communities:
http://www.IPexpert.com/communities
IPexpert - The Global Leader in Self-Study, Classroom-Based, Video
On Demand
and Audio Certification Training Tools for the Cisco CCIE R&S Lab,
CCIE
Security Lab, CCIE Service Provider Lab , CCIE Voice Lab and CCIE
Storage
Lab Certifications.
-----Original Message-----
From: [email protected]
[mailto:[email protected]] On Behalf Of Simon
Baumann
Sent: Tuesday, July 21, 2009 4:50 AM
To: [email protected]
Subject: [OSL | CCIE_Security] DMVPN: question about EIGRP holdtime.
Hi,
I used OWLE Lab2 for testing an DMVPN setup. R5 was my hub, R4 and R6
served as spokes. I added an loopback interface to every router, used
EIGRP for routing in the DMVPN.
Without manipulating the holdown timers, I had flipping EIGRP
adjacencies. I'm not 100% sure which holdown timers I have to
manipulate: only the EIGRP, the nhrp or both?
Cheers
Simon
_______________________________________________
For more information regarding industry leading CCIE Lab training,
please
visit www.ipexpert.com
_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
---
Nefkens Advies
Enk 26
4214 DD Vuren
The Netherlands
Tel: +31 183 634730
Fax: +31 183 690113
Cell: +31 654 323221
Email: [email protected]
Web: http://www.nefkensadvies.nl/
Think before you print.
_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
--
_________________________
Stuart Hare
[email protected]
_________________________
 Think before you print.
|
