Thanks, Marta Correct me if I'm wrong, please, in case I don't have R2 as in Lab 17 I don't think I have to use any static mroute on my GM?
Eugene From: Marta Sokolowska <[email protected]<mailto:[email protected]>> Date: Tuesday, August 7, 2012 4:22 AM To: Mike Rojas <[email protected]<mailto:[email protected]>> Cc: ccie security <[email protected]<mailto:[email protected]>> Subject: Re: [OSL | CCIE_Security] GETVPN multicast rekey through GRE tunnel I was working on this lab some time ago, so I'm attaching configs that worked for me (based on static RP) - in case someone finds it useful :-) I didn't use GNS, the configs are from real devices. I didn't have serial interfaces, so I had to replace them with ethernet, but I think it doesn't make much difference. -- Marta Sokolowska. 2012/8/7 Mike Rojas <[email protected]<mailto:[email protected]>> Hello, Mainly, static RP is used, no so no need to advertise... This has to be some kind of sorcery of GNS, I can pass mcast traffic across the GRE: R4#ping 239.0.0.1 Reply to request 0 from 100.100.100.2, 156 ms However, it seems to be mainly ignoring it (when it comes to my multicast group) .... I took captures, the packet goes out of the ASA, however, the debug IP packet never actually process it... As per the first question, it doesnt need to know where to send it, it will send it over every available interface (even if not running PIM) *Mar 1 02:39:10.123: IP: s=192.10.1.4 (local), d=239.0.0.1 (FastEthernet0/0), len 632, sending broad/multicast *Mar 1 02:39:10.127: IP: s=100.10.10.1 (local), d=239.0.0.1 (Loopback1), len 632, sending broad/multicast *Mar 1 02:39:10.127: IP: s=100.100.100.1 (local), d=239.0.0.1 (Tunnel1), len 632, sending broad/multicast *Mar 1 02:39:10.131: %GDOI-5-KS_SEND_MCAST_REKEY: Sending Multicast Rekey for group GET from address 192.10.1.4 to 239.0.0.1 with seq # 1 Here is a working Config from Piotr that I found on an Old OSL... http://onlinestudylist.com/archives/ccie_security/2012-February/029155.html I'll rack it up tomorrow at Work Mike
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
