Upload File

configuring gre tunnels · configuringgretunnels...

  • Home
  • Documents
  • Configuring GRE Tunnels · ConfiguringGRETunnels GenericRoutingEncapsulation(GRE)isatunnelingprotocolthatprovidesasimplegenericapproachto
6
Configuring GRE Tunnels Generic Routing Encapsulation (GRE) is a tunneling protocol that provides a simple generic approach to transport packets of one protocol over another protocol by means of encapsulation. This module provides information about how to configure a GRE tunnel. Configuring GRE Tunnels, on page 1 IP-in-IP De-capsulation, on page 2 Configuring GRE Tunnels Tunneling provides a mechanism to transport packets of one protocol within another protocol. Generic Routing Encapsulation (GRE) is a tunneling protocol that provides a simple generic approach to transport packets of one protocol over another protocol by means of encapsulation. GRE encapsulates a payload, that is, an inner packet that needs to be delivered to a destination network inside an outer IP packet. The GRE tunnel behave as virtual point-to-point link that have two endpoints identified by the tunnel source and tunnel destination address. The tunnel endpoints send payloads through GRE tunnels by routing encapsulated packets through intervening IP networks. Other IP routers along the way do not parse the payload (the inner packet); they only parse the outer IP packet as they forward it towards the GRE tunnel endpoint. Upon reaching the tunnel endpoint, GRE encapsulation is removed and the payload is forwarded to the packet's ultimate destination. Restrictions for Configuring GRE Tunnels The following restrictions apply while configuring GRE tunnels: • NCS5500 Series Routers support up to 500 GRE tunnels. • Only up to 16 unique source IP addresses are supported for the tunnel source. Configuration Example Configuring a GRE tunnel involves creating a tunnel interface and defining the tunnel source and destination. This example shows how to configure a GRE tunnel between Router1 and Router2. You need to configure tunnel interfaces on both the routers. Tunnel source IP address on Router1 will be configured as the tunnel destination IP address on Router2. Tunnel destination IP address on Router1 will be configured as the tunnel source IP address on Router2. In this example, OSPF is used as the routing protocol between the two routers. You can also configure BGP or IS-IS as the routing protocol. RP/0/RP0/CPU0:Router1# configure RP/0/RP0/CPU0:Router1(config)# interface tunnel-ip 30 RP/0/RP0/CPU0:Router1(config-if)# tunnel mode gre ipv4 Configuring GRE Tunnels 1

Upload: others

Post on 17-Mar-2020

29 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Configuring GRE Tunnels · ConfiguringGRETunnels GenericRoutingEncapsulation(GRE)isatunnelingprotocolthatprovidesasimplegenericapproachto

Configuring GRE Tunnels

Generic Routing Encapsulation (GRE) is a tunneling protocol that provides a simple generic approach totransport packets of one protocol over another protocol by means of encapsulation. This module providesinformation about how to configure a GRE tunnel.

• Configuring GRE Tunnels, on page 1• IP-in-IP De-capsulation, on page 2

Configuring GRE TunnelsTunneling provides a mechanism to transport packets of one protocol within another protocol. Generic RoutingEncapsulation (GRE) is a tunneling protocol that provides a simple generic approach to transport packets ofone protocol over another protocol by means of encapsulation. GRE encapsulates a payload, that is, an innerpacket that needs to be delivered to a destination network inside an outer IP packet. The GRE tunnel behaveas virtual point-to-point link that have two endpoints identified by the tunnel source and tunnel destinationaddress. The tunnel endpoints send payloads through GRE tunnels by routing encapsulated packets throughintervening IP networks. Other IP routers along the way do not parse the payload (the inner packet); they onlyparse the outer IP packet as they forward it towards the GRE tunnel endpoint. Upon reaching the tunnelendpoint, GRE encapsulation is removed and the payload is forwarded to the packet's ultimate destination.

Restrictions for Configuring GRE Tunnels

The following restrictions apply while configuring GRE tunnels:

• NCS5500 Series Routers support up to 500 GRE tunnels.

• Only up to 16 unique source IP addresses are supported for the tunnel source.

Configuration Example

Configuring a GRE tunnel involves creating a tunnel interface and defining the tunnel source and destination.This example shows how to configure a GRE tunnel between Router1 and Router2. You need to configuretunnel interfaces on both the routers. Tunnel source IP address on Router1 will be configured as the tunneldestination IP address on Router2. Tunnel destination IP address on Router1 will be configured as the tunnelsource IP address on Router2. In this example, OSPF is used as the routing protocol between the two routers.You can also configure BGP or IS-IS as the routing protocol.RP/0/RP0/CPU0:Router1# configureRP/0/RP0/CPU0:Router1(config)# interface tunnel-ip 30RP/0/RP0/CPU0:Router1(config-if)# tunnel mode gre ipv4

Configuring GRE Tunnels1

Page 2: Configuring GRE Tunnels · ConfiguringGRETunnels GenericRoutingEncapsulation(GRE)isatunnelingprotocolthatprovidesasimplegenericapproachto

RP/0/RP0/CPU0:Router(config-if)# ipv4 address 10.1.1.1 255.255.255.0RP/0/RP0/CPU0:Router1(config-if)# tunnel source 192.168.1.1RP/0/RP0/CPU0:Router1(config-if)# tunnel destination 192.168.2.1RP/0/RP0/CPU0:Router1(config-if)# exitRP/0/RP0/CPU0:Router1(config)# interface Loopback 0RP/0/RP0/CPU0:Router1(config-if)# ipv4 address 1.1.1.1RP/0/RP0/CPU0:Router1(config-if)# exitRP/0/RP0/CPU0:Router1(config)# router ospf 1RP/0/RP0/CPU0:Router1(config-ospf)# router-id 192.168.4.1RP/0/RP0/CPU0:Router1(config-ospf)# area 0RP/0/RP0/CPU0:Router1(config-ospf-ar)# interface tunnel-ip 30RP/0/RP0/CPU0:Router1(config-ospf-ar)# interface Loopback 0RP/0/RP0/CPU0:Router1(config-ospf-ar)# commit

RP/0/RP0/CPU0:Router2# configureRP/0/RP0/CPU0:Router2(config)# interface tunnel-ip 30RP/0/RP0/CPU0:Router2(config-if)# tunnel mode gre ipv4RP/0/RP0/CPU0:Router2(config-if)# ipv4 address 10.1.1.2 255.255.255.0RP/0/RP0/CPU0:Router2(config-if)# tunnel source 192.168.2.1RP/0/RP0/CPU0:Router2(config-if)# tunnel destination 192.168.1.1RP/0/RP0/CPU0:Router2(config-if)# exitRP/0/RP0/CPU0:Router2(config)# interface Loopback 0RP/0/RP0/CPU0:Router2(config-if)# ipv4 address 2.2.2.2RP/0/RP0/CPU0:Router2(config)# router ospf 1RP/0/RP0/CPU0:Router2(config-ospf)# router-id 192.168.3.1RP/0/RP0/CPU0:Router2(config-ospf)# area 0RP/0/RP0/CPU0:Router2(config-ospf-ar)# interface tunnel-ip 30RP/0/RP0/CPU0:Router2(config-ospf-ar)# interface Loopback 0RP/0/RP0/CPU0:Router2(config-if)# commit

IP-in-IP De-capsulationEncapsulation of datagrams in a network is done for multiple reasons, such as when a source server wants toinfluence the route that a packet takes to reach the destination host. The source server is also known as theencapsulation server.

IP-in-IP encapsulation involves the insertion of an outer IP header over the existing IP header. The sourceand destination address in the outer IP header point to the end points of the IP-in-IP tunnel. The stack of IPheaders are used to direct the packet over a predetermined path to the destination, provided the networkadminstrator knows the loopback addresses of the routers transporting the packet. This tunneling mechanismcan be used for determining availability and latency for most network architectures. It is to be noted that theentire path from source to the destination does not have to be included in the headers, but a segment of thenetwork can be chosen for directing the packets.

The following illustration describes the basic IP-in-IP encapsulation and decapsulation model.

Configuring GRE Tunnels2

Configuring GRE TunnelsIP-in-IP De-capsulation

Page 3: Configuring GRE Tunnels · ConfiguringGRETunnels GenericRoutingEncapsulation(GRE)isatunnelingprotocolthatprovidesasimplegenericapproachto

Figure 1: Basic Encapsulation and De-capsulation with an IP-in-IP

Tunnel

Use Case: Configure IP-in-IP de-capsulation

The following topology describes a use case where IP-in-IP encapsulation and de-capsulation is used fordifferent segments of the network from source to destination. The IP-in-IP tunnel consists of multiple routersused to de-capsulate and direct the packet through the data center fabric network.Figure 2: IP-in-IP De-capsulation through a Data Center Network

The following illustration shows how the stacked IPv4 headers are de-capsulated as they traverse through thede-capsulating routers.Figure 3: IP Header De-capsulation

Stacked IP Header in an Encapsulated Packet

The encapsulated packet will have an outer IPv4 header stacked over the original IPv4 header, as shown inthe following illustration.

Configuring GRE Tunnels3

Configuring GRE TunnelsIP-in-IP De-capsulation

Page 4: Configuring GRE Tunnels · ConfiguringGRETunnels GenericRoutingEncapsulation(GRE)isatunnelingprotocolthatprovidesasimplegenericapproachto

Encapsulated Packet

Configuration

You can use the following sample configuration on the routers to decapsulate the packet as it traverses theIP-in-IP tunnel:RP/0/RP0/CPU0:router(config)# interface tunnel-ip 10RP/0/RP0/CPU0:router(config-if)# tunnel mode ipv4 decapRP/0/RP0/CPU0:router(config-if)# tunnel source loopback 0RP/0/RP0/CPU0:router(config-if)# tunnel destination 10.10.1.2/32

• tunnel-ip: configures an IP-in-IP tunnel interface.

Configuring GRE Tunnels4

Configuring GRE TunnelsIP-in-IP De-capsulation

Page 5: Configuring GRE Tunnels · ConfiguringGRETunnels GenericRoutingEncapsulation(GRE)isatunnelingprotocolthatprovidesasimplegenericapproachto

• ipv4 unnumbered loopback address: enables ipv4 packet processing without an explicit address, exceptfor loopback address.

• tunnel mode ipv4 decap: enables IP-in-IP de-capsulation.

• tunnel source: indicates the source address for the IP-in-IP decap tunnel w.r.t the router interface.

• tunnel destination: indicates the destination address for the IP-in-IP decap tunnel w.r.t the router interface.

Running Configuration

RP/0/RP0/CPU0:router# show running-config interface tunnel-ip 10...interface tunnel-ip 10tunnel mode ipv4 decaptunnel source Loopback 0tunnel destination 10.10.1.2/32

This completes the configuration of IP-in-IP de-capsulation.

Configuring GRE Tunnels5

Configuring GRE TunnelsIP-in-IP De-capsulation

Page 6: Configuring GRE Tunnels · ConfiguringGRETunnels GenericRoutingEncapsulation(GRE)isatunnelingprotocolthatprovidesasimplegenericapproachto

Configuring GRE Tunnels6

Configuring GRE TunnelsIP-in-IP De-capsulation


Analyse mit HP OpenView Netzwerk Service …HP IT-Symposium 2006 4 7 Eine logische Sicht: ein GRE Tunnel pro gemonitorte Area Backbone AS25 AS20 Area 168 Area 169 GRE Tunnels RAMS

miro-icmfxmvdkqz7ku.stackpathdns.com · RIP, OSPF, BGP protocols EolP tunnels PPPoE tunnels PPTP tunnels 1.2 TP tunnels OVPN tunnels VLAN interfaces HotSpot active users RADIUS client

Configuring Unicast and Multicast over Point-to-Multipoint GRE

Configuring IP Tunnels

VyattaNetwork OS - · PDF fileVyatta High Level Architecture 3 IPv4/IPv6 Unicast Firewall Encrypt / Decrypt Tunnels (GRE, mGRE) Multicast DPDK QoS NAT Etc Data Plane (vPlane) CLI REST

CloudEOS and vEOS Router Configuration Guide · 2020. 7. 21. · Cloud HA Topology ... Examples of Running-configurations for GRE-over-IPsec Tunnels ... By bringing adv anced netw

VPLS over GRE - Cisco · Table 1: Feature Information for Configuring Scheme Two of VPLS over GRE Feature Name Releases Feature Information TheVPLSoverGREfeature. Thefollowingcommandswere

GRE Universities - Revised GRE Universities

Configuring GRE Tunnels - cisco.com · Figure1:BasicEncapsulationandDe-capsulationwithanIP-in-IP Tunnel UseCase:ConfigureIP-in-IPde-capsulation ThefollowingtopologydescribesausecasewhereIP-in

IPv6 over IPv4 GRE Tunnels

Generic Routing Encapsulation (GRE) Configuration Guidewhp-hou9.cold.extweb.hp.com/.../ProCurve-SR-dl-GRE-Config-Guide.pdf · Generic Routing Encapsulation (GRE) ... • Configuring

gr Gr · gar - ger - gir - gor - gur de azul gra gra gra gra gra gre gre gre gre gre gre gre gre gre gre re re ra ra gri gri gri ri gru gru gru gru gru gru gru gru gru gru gru ru

Ethernet over GRE Tunnels - cisco.com · Information About Ethernet over GRE Tunnels TheEthernetoverGREtunnelsfeatureallowscustomerstoleverageexistinglow …

GE-02-504 Seismic Considerations for Road Tunnels Seismic... · and-cover tunnels, mined and bored tunnels, immersed tunnels and jacked box tunnels. The latest edition of the AASHTO

Cisco IOS SSL VPN Smart Tunnels Support...smart-tunnel list st1 appl ssh putty.exe windows appl ie iexplore.exe windows end Example Configuring aGroup Policy forSmart Tunnels Support

Generic Routing Encapsulation (GRE) Configuration Guidewhp-hou4.cold.extweb.hp.com/pub/networking/software/Pro... · 2005-12-20 · Configuring GRE GRE Configuration Guide 6 5991-3731

Network Configuration Example Configuring Branch SRX ... · PDF fileTitle: Network Configuration Example Configuring Branch SRX Series for MPLS over GRE with IPsec Segmentation Created

CISCO NETWORKING EXAMS GUIDANCE - Study 365 · PDF fileCISCO NETWORKING EXAMS GUIDANCE. ... Switch security, HSRP, VRRP, GLBP, IPv4 and IPv6 addressing, IPv4/IPv6 routing and GRE tunnels,

Configuring IP Tunnels - Cisco - Global Home PageConfiguring IP Tunnels Thischaptercontainsthefollowingsections: • InformationAboutIPTunnels,page1 • LicensingRequirementsforIPTunnels,page2

Configuring MPLS over GRE - CiscoPE-to-PE GRE Tunneling A provider-edge-to-provider-edge (PE-to-PE) tunnel provides a scalable way to connect multiple customer networks across a non-MPLS

Sikaplan membrane systmes for tunnels · 2 days ago · ROAD TUNNELS ROAD GALLERIES RAILWAY TUNNELS METRO STATIONS TYPICAL APPLICATION MINED TUNNELS AND SHAFTS CUT-&-COVER TUNNELS

Configuring IPv6 over IPv4 GRE Tunnels...Configuring IPv6 over IPv4 GRE Tunnels Author Unknown Created Date 8/3/2021 4:27:23 PM

Apresentação do PowerPoint€¦ · ORGANOGRAMA ABRIL 2018 GREs GRE 1 Araçatuba GRE 2 Campinas GRE 3 Ribeirão Preto GRE 4 Santos GRE 5 Metropolitana SP Oeste GRE 6 S. J. Campos

IPsec vpn topology over GRE tunnels

FastIron Ethernet Switch Layer 3 Routing Configuration ... · PDF fileStatic routes configuration ... Configuring a default network route ... IPv4 point-to-point GRE tunnels

Cisco IOS SSL VPN Smart Tunnels Support to Configure Cisco IOS SSL VPN Smart Tunnels Support Configuring a Smart Tunnel List and Adding Applications Configuringthesmarttunnellistandaddingtheapplicationstothelistontherouterwithadministrative

Configuring PPPoE over L2TPv3 Tunnels · Figure 1: Traditional BNG Architecture Figure 2: PPPoE over L2TPv3 Tunnels to vBNG Broadband Access Aggregation and DSL Configuration Guide,

CONFIGURING DYNAMIC MULTIPOINT VPN SPOKE ROUTER IN … · CONFIGURING DYNAMIC MULTIPOINT VPN SPOKE ROUTER ... When using point-to-point GRE and IPsec hub-and-spoke VPN networks, the

GRE Tunneling over IPsec - pearsoncmg.com · GRE Tunneling over IPsec Generic routing encapsulation (GRE) tunnels have been around for quite some time. GRE was ... The GRE tunnel

GRE Word Lists _ Magoosh GRE Blog

GRE IPv6 Tunnels - Cisco · SUMMARY STEPS 1. enable 2. configureterminal 3. interfacetunnel tunnel-number 4. tunnelsource{ipv6-address|interface-typeinterface-number} 5. tunneldestinationipv6-address

Zimmerman's High Tunnels & Greenhouses – High Tunnels

Configuring VPNs in VRF Mode - Cisco - Global …...“Configuring VPNs in VRF Mode with Tunnel Protection (GRE)” section on page 22-12 and the “VRF Mode Tunnel Protection Configuration

VPN et tunnels GRE - christian.caleca.free.frchristian.caleca.free.fr/pdf/VPN et tunnels GRE.pdf · • GRE ne prévoit pas de chiffrment des données qui passent dans le tunnel,

GRE Configuration and Interoperability Guide · GRE Configuration and Interoperability Guide..... 5 About GRE Tunnels..... 6 Deployment Scenarios .....7 ... Use the GRE tunnel to