Lab. 15 DMVPN
MVPN Phase 1D
• Hub menggunakan mGRE tunnel
• Spokes menggunakan GRE tunnel
• Multicast & Unicast hanya terjadi antara HUB dan SPOKE
(antar spoke berkomunikasi melalui hub )
• Tidak membutuhkan command ip nhrp map multicast dynamic atau ip nhrp
map multicast x.x.x.x jika tidak menggukanakan routing protocol
DMVPN Phase 2
• Hub menggunakan mGRE tunnel
• Spoke menggukan mGRE tunnel
• Antar spoke saling berkomunikasi secara langsung/directly
DMVPN Phase 3
Sama seperti phase 2, namun menggunakan command “no next-hop-self eigrp”
• ip nhrp redirect di HUB
• ip nhrp shortcut di SPOK
Konfigurasi :
HUB
R1(config)#hostname HUB
R1(config)#int f0/0
R1(config-if)#ip address 12.12.12.1 255.255.255.0
R1(config-if)#no sh
R1(config-if)#ex
R1(config)#ip route 0.0.0.0 0.0.0.0 12.12.12.2
SPOKE 1
Spoke-1#config t
Spoke-1(config)#hostname Spoke-1
Spoke-1(config)#int f0/0
Spoke-1(config-if)#ip add 23.23.23.1 255.255.255.0
Spoke-1(config-if)#no sh
Spoke-1(config-if)#ex
Spoke-1(config)#ip route 0.0.0.0 0.0.0.0 23.23.23.2
SPOKE 2
Spoke-2(config)#interface fa0/0
Spoke-2(config-if)#ip add 24.24.24.1 255.255.255.0
Spoke-2(config-if)#no sh
Spoke-2(config-if)#ex
Spoke-2(config)#ip route 0.0.0.0 0.0.0.0 24.24.24.2
Internet
internet(config)#interface fa0/0
internet(config-if)#ip add 12.12.12.2 255.255.255.0
internet(config-if)#no sh
internet(config-if)#ex
internet(config)#interface fa1/0
internet(config-if)#ip add 23.23.23.2 255.255.255.0
internet(config-if)#no sh
internet(config-if)#ex
internet(config)#interface fa1/1
internet(config-if)#ip add 24.24.24.2 255.255.255.0
internet(config-if)#no sh
Kita cek ping
R1
HUB#ping 23.23.23.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 23.23.23.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 45/61/73 ms
Konfigurasi tunnel nya
HUB
HUB(config)#interface tunnel0
HUB(config-if)#ip address 192.168.10.1 255.255.255.0
HUB(config-if)#tunnel source 12.12.12.1
HUB(config-if)#tunnel mode gre multipoint
HUB(config-if)#ip nhrp network-id 1
HUB(config-if)#ip nhrp authentication IDN
HUB(config-if)#ex
SPOKE 1
Spoke-1(config)#int tunnel0
Spoke-1(config-if)#ip add 192.168.10.2 255.255.255.0
Spoke-1(config-if)#tunnel source 23.23.23.1
Spoke-1(config-if)#tunnel destination 12.12.12.1
Spoke-1(config-if)#ip nhrp network-id 1
Spoke-1(config-if)#ip nhrp authentication IDN
Spoke-1(config-if)#ip nhrp map 192.168.10.1 12.12.12.1
Spoke-1(config-if)#ip nhrp nhs 192.168.10.1
Spoke-1(config-if)#ex
SPOKE 2
Spoke-2(config)#int tunnel0
Spoke-2(config-if)#ip add 192.168.10.3 255.255.255.0
Spoke-2(config-if)#tunnel source 24.24.24.1
Spoke-2(config-if)#tunnel destination 12.12.12.1
Spoke-2(config-if)#ip nhrp network-id 1
Spoke-2(config-if)#ip nhrp authentication IDN
Spoke-2(config-if)#ip nhrp map 192.168.10.1 12.12.12.1
Spoke-2(config-if)#ip nhrp nhs 192.168.10.1
Spoke-2(config-if)#ex
Verifikasi
HUB
HUB#show dmvpn
Legend: Attrb --> S - Static, D - Dynamic, I - Incomplete
N - NATed, L - Local, X - No Socket
# Ent --> Number of NHRP entries with same NBMA peer
NHS Status: E --> Expecting Replies, R --> Responding, W --> Waiting
UpDn Time --> Up or Down Time for a Tunnel
Interface: Tunnel0, IPv4 NHRP Details Type:Hub, NHRP Peers:2,
# Int Peer NBMA Addr Peer Tunnel Add State UpDn Tm Attrb
----- --------------- --------------- ----- -------- -----
1 23.23.23.1............................. 192.168.10.2 UP 00:12:19 D
1 24.24.24.1 192.168.10.3 UP 00:05:44 D
Kita cek NHRP
HUB
HUB#show ip nhrp
192.168.10.2/32 via 192.168.10.2 Tunnel0 created 00:12:36, expire
01:47:23 Type: dynamic, Flags: unique registered used
NBMA address: 23.23.23.1
192.168.10.3/32 via 192.168.10.3 Tunnel0 created 00:06:02, expire
01:53:57
Type: dynamic, Flags: unique registered used
NBMA address: 24.24.24.1
Kita cek ping antar tunnel
HUB
HUB#ping 192.168.10.2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.10.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 26/54/78 ms
Komenta