Scribd
Upload
166 views20 pages

16.1.2 Lab - Implement A GRE Tunnel - ITExamAnswers

The document describes configuring and testing GRE tunnels between routers to create overlay networks over IPv4 and IPv6 underlay networks. It includes objectives, resources required, and instructions for building the network topology, configuring basic device settings, and setting up GRE tunnels with static and dynamic routing.

Uploaded by

hayltonmonteiro
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
166 views20 pages

16.1.2 Lab - Implement A GRE Tunnel - ITExamAnswers

The document describes configuring and testing GRE tunnels between routers to create overlay networks over IPv4 and IPv6 underlay networks. It includes objectives, resources required, and instructions for building the network topology, configuring basic device settings, and setting up GRE tunnels with static and dynamic routing.

Uploaded by

hayltonmonteiro
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd

Lab - Implement a GRE Tunnel (Instructor Version)

Instructor Note: Red font color or gray highlights indicate text that appears in the instructor copy only.

Answers: 16.1.2 Lab - Implement a GRE Tunnel


Topology

Addressing Table
Device Interface IPv4 Address IPv6 Address IPv6 Link-Local

R1 G0/0/0 [Link]/24 [Link]/64 fe80::1:1

R1
Loopback 0 [Link]/24 [Link]/64 fe80::1:2

R1
Loopback 1 [Link]/24 [Link]/64 fe80::1:3
R2 G0/0/0 [Link]/24 [Link]/64 fe80::2:1

R2
G0/0/1 [Link]/24 [Link]/64 fe80::2:1
R3 G0/0/0 [Link]/24 [Link]/64 fe80::3:1

R3
Loopback 0 [Link]/24 [Link]/64 fe80::3:2

R3
Loopback 1 [Link]/24 [Link]/64 fe80::3:3

Objectives
Part 1: Build the Network and Configure Basic Device Settings
Part 2: Configure and Verify GRE Tunnels with Static Routing

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 1 of 20 [Link]
Lab - Implement a GRE Tunnel

Part 3: Configure and Verify GRE Tunnels by Using a Routing Protocol


Part 4: Examine the Recursive Routing Problem with GRE

Background / Scenario
Overlay networks allow you to insert flexibility into existing topologies, which are then referred to as underlay
networks. Cisco’s Generic Routing Encapsulation (GRE) protocol is a very useful tool that allows you to
create overlay networks to support many different purposes. It is very flexible and works with IPv4 or IPv6 as
an underlay network. In this lab you will deploy basic GRE tunnels over both IPv4 and IPv6 underlay
networks.
Note: This lab is an exercise in configuring and verifying various implementations of GRE tunnels and does
not reflect networking best practices.
Note: The routers used with CCNP hands-on labs are Cisco 4221 with Cisco IOS XE Release 16.9.4
(universalk9 image). Other routers and Cisco IOS versions can be used. Depending on the model and Cisco
IOS version, the commands available and the output produced might vary from what is shown in the labs.
Note: Ensure that the routers have been erased and have no startup configurations. If you are unsure contact
your instructor.
Instructor Note: Refer to the Instructor Lab Manual for the procedures to initialize and reload devices.

Required Resources
 3 Routers (Cisco 4221 with Cisco IOS XE Release 16.9.4 universal image or comparable)
 1 PC (Choice of operating system with a terminal emulation program installed)
 Console cables to configure the Cisco IOS devices via the console ports
 Ethernet cables as shown in the topology

Instructions

Part 1: Build the Network and Configure Basic Device Settings


In Part 1, you will set up the network topology and configure basic settings.

Step 1: Cable the network as shown in the topology.


Attach the devices as shown in the topology diagram, and cable as necessary.

Step 2: Configure basic settings for each switch.


a. Console into each router, enter global configuration mode, and apply the basic settings. A command list
for each device is listed below for initial configurations.
Open configuration window

Router R1
hostname R1
no ip domain lookup
ipv6 unicast-routing
banner motd # R1, Implement a GRE Tunnel #
line con 0
exec-timeout 0 0
logging synchronous
exit

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 2 of 20 [Link]
Lab - Implement a GRE Tunnel

line vty 0 4
privilege level 15
password cisco123
exec-timeout 0 0
logging synchronous
login
exit
router ospf 4
router-id [Link]
exit
ipv6 router ospf 6
router-id [Link]
exit
interface g0/0/0
ip address [Link] [Link]
ipv6 address fe80::1:1 link-local
ipv6 address [Link]/64
no shutdown
ip ospf 4 area 0
ipv6 ospf 6 area 0
exit
interface loopback 0
ip address [Link] [Link]
ipv6 address fe80::1:2 link-local
ipv6 address [Link]/64
no shutdown
ip ospf 4 area 0
ipv6 ospf 6 area 0
exit
interface loopback 1
ip address [Link] [Link]
ipv6 address fe80::1:3 link-local
ipv6 address [Link]/64
no shutdown
exit
Router R2
hostname R2
no ip domain lookup
ipv6 unicast-routing
banner motd # R2, Implement a GRE Tunnel #
line con 0
exec-timeout 0 0
logging synchronous
exit
line vty 0 4

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 3 of 20 [Link]
Lab - Implement a GRE Tunnel

privilege level 15
password cisco123
exec-timeout 0 0
logging synchronous
login
exit
router ospf 4
router-id [Link]
exit
ipv6 router ospf 6
router-id [Link]
exit
interface g0/0/0
ip address [Link] [Link]
ipv6 address fe80::2:1 link-local
ipv6 address [Link]/64
no shutdown
ip ospf 4 area 0
ipv6 ospf 6 area 0
exit
interface g0/0/1
ip address [Link] [Link]
ipv6 address fe80::2:2 link-local
ipv6 address [Link]/64
no shutdown
ip ospf 4 area 0
ipv6 ospf 6 area 0
exit
Router R3
hostname R3
no ip domain lookup
ipv6 unicast-routing
banner motd # R3, Implement a GRE Tunnel #
line con 0
exec-timeout 0 0
logging synchronous
exit
line vty 0 4
privilege level 15
password cisco123
exec-timeout 0 0
logging synchronous
login
exit
router ospf 4

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 4 of 20 [Link]
Lab - Implement a GRE Tunnel

router-id [Link]
exit
ipv6 router ospf 6
router-id [Link]
exit
interface g0/0/0
ip address [Link] [Link]
ipv6 address fe80::3:1 link-local
ipv6 address [Link]/64
no shutdown
ip ospf 4 area 0
ipv6 ospf 6 area 0
exit
interface loopback 0
ip address [Link] [Link]
ipv6 address fe80::3:2 link-local
ipv6 address [Link]/64
no shutdown
ip ospf 4 area 0
ipv6 ospf 6 area 0
exit
interface loopback 1
ip address [Link] [Link]
ipv6 address fe80::3:3 link-local
ipv6 address [Link]/64
no shutdown
exit
b. Set the clock on each device to UTC time.
c. Save the running configuration to startup-config.
Close configuration window

Part 2: Configure and Verify GRE Tunnels with Static Routing


In Part 2, you will configure and verify GRE Tunnels between R1 and R3, and you will use static routes for
overlay reachability and dynamic routing for underlay reachability. You will configure two tunnels, one for IPv4
traffic and one of IPv6 traffic. GRE tunnels are extremely flexible, and there are many options for
implementation beyond what is being done in this lab.

Step 1: Verify reachability between R1 and R3.


a. From R1, ping R3 interface Loopback 0 using IPv4. All pings should be successful.
Open configuration window

R1# ping [Link]


Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to [Link], timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/1 ms
b. From R1, ping R3 interface Loopback 0 using IPv6. All pings should be successful.
R1# ping [Link]

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 5 of 20 [Link]
Lab - Implement a GRE Tunnel

Type escape sequence to abort.


Sending 5, 100-byte ICMP Echos to [Link], timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/7 ms

Step 2: Create an IPv4-based GRE tunnel between R1 and R3.


a. On R1, create interface Tunnel 0, specifying the IP address [Link]/30, a tunnel source of
Loopback0, and a tunnel destination of [Link].
R1(config)# interface tunnel 0
R1(config-if)# ip address [Link] [Link]
R1(config-if)# tunnel source loopback 0
R1(config-if)# tunnel destination [Link]
R1(config-if)# exit
b. On R1, create a static route to [Link]/24 via interface Tunnel 0.
R1(config)# ip route [Link] [Link] tunnel 0
c. On R3, create interface Tunnel 0, specifying the IP address [Link]/30, a tunnel source of
Loopback0, and a tunnel destination of [Link].
R3(config)# interface tunnel 0
R3(config-if)# ip address [Link] [Link]
R3(config-if)# tunnel source loopback 0
R3(config-if)# tunnel destination [Link]
R3(config-if)# exit
d. On R3, create a static route to [Link]/24 via interface Tunnel 0.
R3(config)# ip route [Link] [Link] tunnel 0
e. On R1, issue the command show interface tunnel 0 and examine the output.
R1# show interface tunnel 0
Tunnel0 is up, line protocol is up
Hardware is Tunnel
Internet address is [Link]/30
MTU 9976 bytes, BW 100 Kbit/sec, DLY 50000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation TUNNEL, loopback not set
Keepalive not set
Tunnel linestate evaluation up
Tunnel source [Link] (Loopback0), destination [Link]
Tunnel Subblocks:
src-track:
Tunnel0 source tracking subblock associated with Loopback0
Set of tunnels with source Loopback0, 1 member (includes iterators), on
interface <OK>
Tunnel protocol/transport GRE/IP
Key disabled, sequencing disabled
Checksumming of packets disabled
Tunnel TTL 255, Fast tunneling enabled
Tunnel transport MTU 1476 bytes
Tunnel transmit bandwidth 8000 (kbps)

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 6 of 20 [Link]
Lab - Implement a GRE Tunnel

Tunnel receive bandwidth 8000 (kbps)


Last input never, output never, output hang never
Last clearing of "show interface" counters [Link]
Input queue: 0/375/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/0 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
0 packets input, 0 bytes, 0 no buffer
Received 0 broadcasts (0 IP multicasts)
0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
0 packets output, 0 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 unknown protocol drops
0 output buffer failures, 0 output buffers swapped out
f. From R1, ping [Link]. The pings should be successful.

Step 3: Create an IPv6-based GRE tunnel between R1 and R3.


a. On R1, create interface Tunnel 1, specifying the IPv6 address [Link]/64, a tunnel source of
Loopback0, a tunnel destination of [Link], and the tunnel mode GRE IPv6.
R1(config)# interface tunnel 1
R1(config-if)# ipv6 address [Link]/64
R1(config-if)# tunnel source loopback 0
R1(config-if)# tunnel destination [Link]
R1(config-if)# tunnel mode gre ipv6
R1(config-if)# exit
b. On R1, create a static route to [Link]/64 via interface Tunnel 1.
R1(config)# ipv6 route [Link]/64 tunnel 1
c. On R3, create interface Tunnel 1, specifying the IPv6 address [Link]/64, a tunnel source of
Loopback0, and a tunnel destination of [Link].
R3(config)# interface tunnel 1
R3(config-if)# ipv6 address [Link]/64
R3(config-if)# tunnel source loopback 0
R3(config-if)# tunnel destination [Link]
R3(config-if)# tunnel mode gre ipv6
R3(config-if)# exit
d. On R3, create a static route to [Link]/64 via interface Tunnel 1.
R3(config)# ipv6 route [Link]/64 tunnel 1
e. On R1, issue the command show interface tunnel 1 and examine the output.
R1# show interface tunnel 1
Tunnel1 is up, line protocol is up
Hardware is Tunnel
MTU 1456 bytes, BW 100 Kbit/sec, DLY 50000 usec,
reliability 255/255, txload 255/255, rxload 255/255

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 7 of 20 [Link]
Lab - Implement a GRE Tunnel

Encapsulation TUNNEL, loopback not set


Keepalive not set
Tunnel linestate evaluation up
Tunnel source [Link] (Loopback0), destination [Link]
Tunnel Subblocks:
src-track:
Tunnel1 source tracking subblock associated with Loopback0
Set of tunnels with source Loopback0, 2 members (includes iterators),on
interface <OK>
Tunnel protocol/transport GRE/IPv6
Key disabled, sequencing disabled
Checksumming of packets disabled
Tunnel TTL 255
Path MTU Discovery, ager 10 mins, min MTU 1280
Tunnel transport MTU 1456 bytes
Tunnel transmit bandwidth 8000 (kbps)
Tunnel receive bandwidth 8000 (kbps)
Last input [Link], output [Link], output hang never
Last clearing of "show interface" counters [Link]
Input queue: 0/375/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/0 (size/max)
5 minute input rate 367000 bits/sec, 395 packets/sec
5 minute output rate 367000 bits/sec, 395 packets/sec
246335 packets input, 28574884 bytes, 0 no buffer
Received 0 broadcasts (0 IP multicasts)
0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
246336 packets output, 28575000 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 unknown protocol drops
0 output buffer failures, 0 output buffers swapped out
f. From R1, ping [Link]. The pings should be successful.
Close configuration window

Part 3: Configure and verify GRE Tunnels with Dynamic Routing


In Part 3, you will configure and verify GRE tunnels between R1 and R3, and you will use dynamic routing for
overlay reachability and static routing for underlay reachability. You will configure two tunnels, one for IPv4
traffic and one of IPv6 traffic.

Step 1: Remove the Tunnel 0 and Tunnel 1 interfaces on R1 and R3.


Issue the command no interface tunnel 0 and no interface tunnel 1 on R1 and R3.
Open configuration window

Step 2: Replace the OSPF configuration on R1, R2, and R3 with static routing.
a. On R1, R2, and R3, remove OSPF with the no router ospf 4 and no ipv6 router ospf 6 commands.
b. On R1 and R3, create IPv4 and IPv6 static default routes that point to R2.
c. On R2, create IPv4 and IPv6 static routes that point to R1 and R3 loopback 0 networks.
R2(config)# ip route [Link] [Link] [Link]

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 8 of 20 [Link]
Lab - Implement a GRE Tunnel

R2(config)# ip route [Link] [Link] [Link]


R2(config)# ipv6 route [Link]/64 [Link]
R2(config)# ipv6 route [Link]/64 [Link]
d. Verify that R1 can reach Loopback 0 on R3 with pings using a source address of the R1 Loopback 0
address.
R1# ping [Link] source loopback 0
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to [Link], timeout is 2 seconds:
Packet sent with a source address of [Link]
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/2 ms

R1# ping [Link] source loopback 0


Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to [Link], timeout is 2 seconds:
Packet sent with a source address of [Link]
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/1 ms

Step 3: Create an IPv4-based GRE tunnel between R1 and R3.


a. On R1, create interface Tunnel 0, specifying the IP address [Link]/30, bandwidth of 4000 kbps, a
tunnel source of Loopback0, and a tunnel destination of [Link].
R1(config)# interface tunnel 0
R1(config-if)# ip address [Link] [Link]
R1(config-if)# bandwidth 4000
R1(config-if)# ip mtu 1400
R1(config-if)# tunnel source loopback 0
R1(config-if)# tunnel destination [Link]
R1(config-if)# exit
b. On R1, configure OSPFv2 process-id 4 with router-id [Link], and use network statements or interface
configuration commands to include interface Tunnel 0 in Area 0 and interface Loopback 1 in Area 1.
R1(config)# router ospf 4
R1(config-router)# router-id [Link]
R1(config-router)# network [Link] [Link] area 0
R1(config-router)# network [Link] [Link] area 1
R1(config-router)# exit
c. On R3, create interface Tunnel 0, specifying the IP address [Link]/30, bandwidth of 4000 kbps, a
tunnel source of Loopback0, and a tunnel destination of [Link].
R3(config)# interface tunnel 0
R3(config-if)# ip address [Link] [Link]
R3(config-if)# bandwidth 4000
R3(config-if)# ip mtu 1400
R3(config-if)# tunnel source loopback 0
R3(config-if)# tunnel destination [Link]
R3(config-if)# exit

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 9 of 20 [Link]
Lab - Implement a GRE Tunnel

d. On R3, configure OSPFv2 process-id 4 with router-id [Link], and use network statements or interface
configuration commands to include interface Tunnel 0 in Area 0 and interface Loopback 1 in Area 1.
R3(config)# router ospf 4
R3(config-router)# router-id [Link]
R3(config-router)# network [Link] [Link] area 0
R3(config-router)# network [Link] [Link] area 1
R3(config-router)# exit
e. On R1, issue the command show interface tunnel 0 and examine the output.
R1# show interface tunnel 0
Tunnel0 is up, line protocol is up
Hardware is Tunnel
Internet address is [Link]/30
MTU 9976 bytes, BW 4000 Kbit/sec, DLY 50000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation TUNNEL, loopback not set
Keepalive not set
Tunnel linestate evaluation up
Tunnel source [Link] (Loopback0), destination [Link]
Tunnel Subblocks:
src-track:
Tunnel0 source tracking subblock associated with Loopback0
Set of tunnels with source Loopback0, 1 member (includes iterators), on
interface <OK>
Tunnel protocol/transport GRE/IP
Key disabled, sequencing disabled
Checksumming of packets disabled
Tunnel TTL 255, Fast tunneling enabled
Tunnel transport MTU 1476 bytes
Tunnel transmit bandwidth 8000 (kbps)
Tunnel receive bandwidth 8000 (kbps)
Last input [Link], output [Link], output hang never
Last clearing of "show interface" counters [Link]
Input queue: 0/375/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/0 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
23 packets input, 2064 bytes, 0 no buffer
Received 0 broadcasts (0 IP multicasts)
0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
58 packets output, 6784 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 unknown protocol drops
0 output buffer failures, 0 output buffers swapped out
f. On R1, issue the command show ip route ospf and verify that [Link]/24 appears in the routing table
as an OSPF route.
R1# show ip route ospf | begin Gateway

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 10 of 20 [Link]
Lab - Implement a GRE Tunnel

Gateway of last resort is [Link] to network [Link]

[Link]/16 is variably subnetted, 3 subnets, 2 masks


O IA [Link]/32 [110/26] via [Link], [Link], Tunnel0
g. From R1, ping [Link]. The pings should be successful.

Step 4: Create an IPv6-based GRE tunnel between R1 and R3.


a. On R1, create interface Tunnel 1, specifying the IPv6 address [Link]/64, bandwidth of 4000kbps,
a tunnel source of Loopback0, and a tunnel destination of [Link].
R1(config)# interface tunnel 1
R1(config-if)# ipv6 address [Link]/64
R1(config-if)# bandwidth 4000
R1(config-if)# tunnel source loopback 0
R1(config-if)# tunnel destination [Link]
R1(config-if)# tunnel mode gre ipv6
R1(config-if)# exit
b. On R1, configure OSPFv3 process-id 6 with router-id [Link], and interface configuration commands to
include interface Tunnel 0 in Area 0 and interface Loopback 1 in Area 1.
R1(config)# ipv6 router ospf 6
R1(config-rtr)# router-id [Link]
R1(config-rtr)# exit
R1(config)# interface tunnel 1
R1(config-if)# ipv6 ospf 6 area 0
R1(config-if)# exit
R1(config)# interface loopback 1
R1(config-if)# ipv6 ospf 6 area 1
R1(config-if)# exit
c. On R3, create interface Tunnel 1, specifying the IPv6 address [Link]/64, bandwidth of 4000kbps,
a tunnel source of Loopback0, and a tunnel destination of [Link].
R3(config)# interface tunnel 1
R3(config-if)# ipv6 address [Link]/64
R3(config-if)# bandwidth 4000
R3(config-if)# tunnel source loopback 0
R3(config-if)# tunnel destination [Link]
R3(config-if)# tunnel mode gre ipv6
R3(config-if)# exit
d. On R3, configure OSPFv3 process-id 6 with router-id [Link], and use network statements or interface
configuration commands to include interface Tunnel 0 in Area 0 and interface Loopback 1 in Area 1.
R3(config)# ipv6 router ospf 6
R3(config-rtr)# router-id [Link]
R3(config-rtr)# exit
R3(config)# interface tunnel 1
R3(config-if)# ipv6 ospf 6 area 0
R3(config-if)# exit
R3(config)# interface loopback 1

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 11 of 20 [Link]
Lab - Implement a GRE Tunnel

R3(config-if)# ipv6 ospf 6 area 1


R3(config-if)# exit
e. On R1, issue the command show interface tunnel 1 and examine the output.
R1# show interface tunnel 1
Tunnel1 is up, line protocol is up
Hardware is Tunnel
MTU 1456 bytes, BW 4000 Kbit/sec, DLY 50000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation TUNNEL, loopback not set
Keepalive not set
Tunnel linestate evaluation up
Tunnel source [Link] (Loopback0), destination [Link]
Tunnel Subblocks:
src-track:
Tunnel1 source tracking subblock associated with Loopback0
Set of tunnels with source Loopback0, 2 members (includes iterators),on
interface <OK>
Tunnel protocol/transport GRE/IPv6
Key disabled, sequencing disabled
Checksumming of packets disabled
Tunnel TTL 255
Path MTU Discovery, ager 10 mins, min MTU 1280
Tunnel transport MTU 1456 bytes
Tunnel transmit bandwidth 8000 (kbps)
Tunnel receive bandwidth 8000 (kbps)
Last input [Link], output [Link], output hang never
Last clearing of "show interface" counters [Link]
Input queue: 0/375/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/0 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
31 packets input, 4048 bytes, 0 no buffer
Received 0 broadcasts (0 IP multicasts)
0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
46 packets output, 5864 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 unknown protocol drops
0 output buffer failures, 0 output buffers swapped out
f. On R1, issue the command show ipv6 route ospf and verify that [Link]/64 appears in
the routing table as an OSPF route.
R1# show ipv6 route ospf
IPv6 Routing Table - default - 11 entries
Codes: C - Connected, L - Local, S - Static, U - Per-user Static route
B - BGP, R - RIP, H - NHRP, I1 - ISIS L1
I2 - ISIS L2, IA - ISIS interarea, IS - ISIS summary, D - EIGRP
EX - EIGRP external, ND - ND Default, NDp - ND Prefix, DCE - Destination

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 12 of 20 [Link]
Lab - Implement a GRE Tunnel

NDr - Redirect, RL - RPL, O - OSPF Intra, OI - OSPF Inter


OE1 - OSPF ext 1, OE2 - OSPF ext 2, ON1 - OSPF NSSA ext 1
ON2 - OSPF NSSA ext 2, a - Application
OI [Link]/128 [110/25]
via FE80::12B3:D6FF:FE04:ED10, Tunnel1
g. From R1, ping [Link]. The pings should be successful.
Close configuration window

Part 4: Examine the Recursive Routing Problem with GRE


Recursive routing in overlay networks occurs when the router decides that the best interface to use to cross
the underlay network is an interface that is a part of the overlay network. For example, if R1 decided, based
on the routing table, that the best way to get to the tunnel destination is via the tunnel itself. Care must be
taken during configuration of routing protocols to prevent this from occurring, as it will cause the overlay
network to fail.
a. To demonstrate how easily this could occur, add network [Link] to the OSPF configuration of R1.
Open configuration window

R1(config)# router ospf 4


R1(config-router)# network [Link] [Link] area 0
R1(config-router)# end
R1#
*Jan 24 [Link].437: %SYS-5-CONFIG_I: Configured from console by console
R1#
*Jan 24 [Link].345: %OSPF-5-ADJCHG: Process 4, Nbr [Link] on Tunnel0 from FULL to
DOWN, Neighbor Down: Dead timer expired
R1#
*Jan 24 [Link].422: %OSPF-5-ADJCHG: Process 4, Nbr [Link] on Tunnel0 from LOADING
to FULL, Loading Done
R1#
*Jan 24 [Link].620: %OSPF-5-ADJCHG: Process 4, Nbr [Link] on Tunnel0 from FULL to
DOWN, Neighbor Down: Dead timer expired
R1#
b. R1 shows that the dead timer expires and then the adjacency tries to reset. Now look at what is being
logged at R3.
Jan 27 [Link].654: %ADJ-5-PARENT: Midchain parent maintenance for IP midchain out of
Tunnel0 - looped chain attempting to stack
R3(config)#
*Jan 27 [Link].485: %TUN-5-RECURDOWN: Tunnel0 temporarily disabled due to recursive
routing
*Jan 27 [Link].485: %LINEPROTO-5-UPDOWN: Line protocol on Interface Tunnel0, changed
state to down
*Jan 27 [Link].486: %OSPF-5-ADJCHG: Process 4, Nbr [Link] on Tunnel0 from FULL to
DOWN, Neighbor Down: Interface down or detached
c. As you can see, R3 recognizes the issue and even tells you there is a recursive routing problem. Fix this
by removing the network statement on R1 and the tunnel will come back up.
R1(config)# router ospf 4
R1(config-router)# no network [Link] [Link] area 0
R1(config-router)# end
R1#
*Jan 24 [Link].496: %SYS-5-CONFIG_I: Configured from console by console
R1#

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 13 of 20 [Link]
Lab - Implement a GRE Tunnel

*Jan 24 [Link].439: %OSPF-5-ADJCHG: Process 4, Nbr [Link] on Tunnel0 from LOADING


to FULL, Loading Done
Close configuration window
End of document

Router Interface Summary Table


Router Model Ethernet Interface #1 Ethernet Interface #2 Serial Interface #1 Serial Interface #2

Fast Ethernet 0/0 Fast Ethernet 0/1


1800 (F0/0) (F0/1) Serial 0/0/0 (S0/0/0) Serial 0/0/1 (S0/0/1)
Gigabit Ethernet 0/0 Gigabit Ethernet 0/1
1900 (G0/0) (G0/1) Serial 0/0/0 (S0/0/0) Serial 0/0/1 (S0/0/1)
Fast Ethernet 0/0 Fast Ethernet 0/1
2801 (F0/0) (F0/1) Serial 0/1/0 (S0/1/0) Serial 0/1/1 (S0/1/1)
Fast Ethernet 0/0 Fast Ethernet 0/1
2811 (F0/0) (F0/1) Serial 0/0/0 (S0/0/0) Serial 0/0/1 (S0/0/1)
Gigabit Ethernet 0/0 Gigabit Ethernet 0/1
2900 (G0/0) (G0/1) Serial 0/0/0 (S0/0/0) Serial 0/0/1 (S0/0/1)
Gigabit Ethernet 0/0/0 Gigabit Ethernet 0/0/1
4221 (G0/0/0) (G0/0/1) Serial 0/1/0 (S0/1/0) Serial 0/1/1 (S0/1/1)
Gigabit Ethernet 0/0/0 Gigabit Ethernet 0/0/1
4300 (G0/0/0) (G0/0/1) Serial 0/1/0 (S0/1/0) Serial 0/1/1 (S0/1/1)

Note: To find out how the router is configured, look at the interfaces to identify the type of router and how many
interfaces the router has. There is no way to effectively list all the combinations of configurations for each router
class. This table includes identifiers for the possible combinations of Ethernet and Serial interfaces in the device.
The table does not include any other type of interface, even though a specific router may contain one. An
example of this might be an ISDN BRI interface. The string in parenthesis is the legal abbreviation that can be
used in Cisco IOS commands to represent the interface.
End of document

Device Configs - Final

Router R1
R1# show run
Building configuration...

Current configuration : 4447 bytes


!
version 16.9
service timestamps debug datetime msec
service timestamps log datetime msec
platform qfp utilization monitor load 80
no platform punt-keepalive disable-kernel-core
!
hostname R1
!
boot-start-marker
boot-end-marker

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 14 of 20 [Link]
Lab - Implement a GRE Tunnel

!
no aaa new-model
!
no ip domain lookup
!
login on-success log
!
subscriber templating
!
ipv6 unicast-routing
multilink bundle-name authenticated
!
spanning-tree extend system-id
!
redundancy
mode none
!
interface Loopback0
ip address [Link] [Link]
ipv6 address FE80::1:2 link-local
ipv6 address [Link]/64
!
interface Loopback1
ip address [Link] [Link]
ipv6 address FE80::1:3 link-local
ipv6 address [Link]/64
ipv6 ospf 6 area 1
!
interface Tunnel0
bandwidth 4000
ip address [Link] [Link]
ip mtu 1400
tunnel source Loopback0
tunnel destination [Link]
!
interface Tunnel1
bandwidth 4000
no ip address
ipv6 address [Link]/64
ipv6 ospf 6 area 0
tunnel source Loopback0
tunnel mode gre ipv6
tunnel destination [Link]
tunnel path-mtu-discovery
!
interface GigabitEthernet0/0/0
ip address [Link] [Link]
negotiation auto
ipv6 address FE80::1:1 link-local
ipv6 address [Link]/64

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 15 of 20 [Link]
Lab - Implement a GRE Tunnel

!
interface GigabitEthernet0/0/1
no ip address
negotiation auto
!
interface Serial0/1/0
no ip address
shutdown
!
interface Serial0/1/1
no ip address
shutdown
!
router ospf 4
router-id [Link]
network [Link] [Link] area 0
network [Link] [Link] area 1
!
ip forward-protocol nd
no ip http server
ip http authentication local
ip http secure-server
ip route [Link] [Link] GigabitEthernet0/0/0 [Link]
!
ipv6 route ::/0 [Link]
ipv6 router ospf 6
router-id [Link]
!
control-plane
!
banner motd ^C R1, Implement a GRE Tunnel ^C
!
line con 0
exec-timeout 0 0
logging synchronous
transport input none
stopbits 1
line aux 0
stopbits 1
line vty 0 4
exec-timeout 0 0
privilege level 15
password cisco123
logging synchronous
login
!
end

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 16 of 20 [Link]
Lab - Implement a GRE Tunnel

Router R2
R2# show run
Building configuration...

Current configuration : 3795 bytes


!
version 16.9
service timestamps debug datetime msec
service timestamps log datetime msec
platform qfp utilization monitor load 80
no platform punt-keepalive disable-kernel-core
!
hostname R2
!
boot-start-marker
boot-end-marker
!
no aaa new-model
!
no ip domain lookup
!
login on-success log
!
subscriber templating
!
ipv6 unicast-routing
multilink bundle-name authenticated
!
spanning-tree extend system-id
!
redundancy
mode none
!
interface GigabitEthernet0/0/0
ip address [Link] [Link]
negotiation auto
ipv6 address FE80::2:1 link-local
ipv6 address [Link]/64
!
interface GigabitEthernet0/0/1
ip address [Link] [Link]
negotiation auto
ipv6 address FE80::2:2 link-local
ipv6 address [Link]/64
!
ip forward-protocol nd
no ip http server
ip http secure-server

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 17 of 20 [Link]
Lab - Implement a GRE Tunnel

ip route [Link] [Link] [Link]


ip route [Link] [Link] [Link]
!
ipv6 route [Link]/64 [Link]
ipv6 route [Link]/64 [Link]
ipv6 router ospf 5
router-id [Link]
!
control-plane
!
banner motd ^C R2, Implement a GRE Tunnel ^C
!
line con 0
exec-timeout 0 0
logging synchronous
transport input none
stopbits 1
line aux 0
stopbits 1
line vty 0 4
exec-timeout 0 0
privilege level 15
password cisco123
logging synchronous
login
!
end

Router R3
R3# show run
Building configuration...

Current configuration : 4447 bytes


!
version 16.9
service timestamps debug datetime msec
service timestamps log datetime msec
platform qfp utilization monitor load 80
no platform punt-keepalive disable-kernel-core
!
hostname R3
!
boot-start-marker
boot-end-marker
!
no aaa new-model
!
no ip domain lookup

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 18 of 20 [Link]
Lab - Implement a GRE Tunnel

!
login on-success log
!
subscriber templating
!
ipv6 unicast-routing
multilink bundle-name authenticated
!
spanning-tree extend system-id
!
redundancy
mode none
!
interface Loopback0
ip address [Link] [Link]
ipv6 address FE80::3:2 link-local
ipv6 address [Link]/64
!
interface Loopback1
ip address [Link] [Link]
ipv6 address FE80::3:3 link-local
ipv6 address [Link]/64
ipv6 ospf 6 area 1
!
interface Tunnel0
bandwidth 4000
ip address [Link] [Link]
ip mtu 1400
tunnel source Loopback0
tunnel destination [Link]
!
interface Tunnel1
bandwidth 4000
no ip address
ipv6 address [Link]/64
ipv6 ospf 6 area 0
tunnel source Loopback0
tunnel mode gre ipv6
tunnel destination [Link]
tunnel path-mtu-discovery
!
interface GigabitEthernet0/0/0
ip address [Link] [Link]
negotiation auto
ipv6 address FE80::3:1 link-local
ipv6 address [Link]/64
!
interface GigabitEthernet0/0/1
no ip address
negotiation auto

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 19 of 20 [Link]
Lab - Implement a GRE Tunnel

!
interface Serial0/1/0
no ip address
shutdown
!
interface Serial0/1/1
no ip address
shutdown
!
router ospf 4
router-id [Link]
network [Link] [Link] area 0
network [Link] [Link] area 1
!
ip forward-protocol nd
no ip http server
ip http secure-server
ip route [Link] [Link] GigabitEthernet0/0/0 [Link]
!
ipv6 route ::/0 [Link]
ipv6 router ospf 6
router-id [Link]
!
control-plane
!
banner motd ^C R3, Implement a GRE Tunnel ^C
!
line con 0
exec-timeout 0 0
logging synchronous
transport input none
stopbits 1
line aux 0
stopbits 1
line vty 0 4
exec-timeout 0 0
privilege level 15
password cisco123
logging synchronous
login
!
end

 2020 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 20 of 20 [Link]

You might also like