Last active
August 29, 2015 14:02
-
-
Save tomoconnor/bfd252d490a50ff2820e to your computer and use it in GitHub Desktop.
IPv4 in IPv6 GRE tunnel config with 4 routers, BGP // Images and Topology: http://imgur.com/a/x3LKb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| R1 | |
| g0/0 172.16.1.1 255.255.255.0 (to C2) | |
| g1/0 FDE5:F699:8798::1 | |
| R2 | |
| g0/0 172.17.1.1 255.255.255.0 (to C1) | |
| g1/0 FD5C:8D0A:8415::1 (to R3 g0/0) | |
| R3 | |
| g0/0 FD5C:8D0A:8415::2 (to R2 g1/0) | |
| g1/0 FD66:F6D0:AD72::1 (to R4 g1/0) | |
| lo0 10.3.3.1 255.255.255.252 | |
| R4 | |
| g0/0 FDE5:F699:8798::2 (to R1 g1/0) | |
| g1/0 FD66:F6D0:AD72::2 (to R3 g1/0) | |
| lo0 10.4.4.1 255.255.255.252 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ! | |
| ! | |
| ! Last configuration change at 13:57:28 UTC Thu Jun 5 2014 | |
| ! | |
| version 15.2 | |
| service timestamps debug datetime msec | |
| service timestamps log datetime msec | |
| ! | |
| hostname R1 | |
| ! | |
| boot-start-marker | |
| boot-end-marker | |
| ! | |
| ! | |
| ! | |
| no aaa new-model | |
| no ip icmp rate-limit unreachable | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| no ip domain lookup | |
| ip cef | |
| ipv6 unicast-routing | |
| ipv6 cef | |
| ! | |
| ! | |
| multilink bundle-name authenticated | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ip tcp synwait-time 5 | |
| ! | |
| ! | |
| crypto isakmp policy 10 | |
| hash sha512 | |
| authentication pre-share | |
| crypto isakmp key vpnuser address ipv6 FD5C:8D0A:8415::1/48 | |
| ! | |
| ! | |
| crypto ipsec transform-set vpnset esp-aes esp-sha512-hmac | |
| mode tunnel | |
| ! | |
| ! | |
| crypto ipsec profile vpnprofile | |
| set transform-set vpnset | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| interface Tunnel0 | |
| ip address 10.1.1.2 255.255.255.0 | |
| tunnel source FDE5:F699:8798::1 | |
| tunnel mode gre ipv6 | |
| tunnel destination FD5C:8D0A:8415::1 | |
| tunnel path-mtu-discovery | |
| tunnel protection ipsec profile vpnprofile | |
| ! | |
| interface Ethernet0/0 | |
| no ip address | |
| shutdown | |
| duplex auto | |
| ! | |
| interface GigabitEthernet0/0 | |
| ip address 172.16.1.1 255.255.255.0 | |
| media-type gbic | |
| speed 1000 | |
| duplex full | |
| negotiation auto | |
| ! | |
| interface GigabitEthernet1/0 | |
| no ip address | |
| negotiation auto | |
| ipv6 address FDE5:F699:8798::1/48 | |
| ! | |
| router bgp 65535 | |
| bgp router-id 172.16.1.1 | |
| bgp log-neighbor-changes | |
| no bgp default ipv4-unicast | |
| neighbor FDE5:F699:8798::2 remote-as 65530 | |
| ! | |
| address-family ipv4 | |
| exit-address-family | |
| ! | |
| address-family ipv6 | |
| network FDE5:F699:8798::/48 | |
| neighbor FDE5:F699:8798::2 activate | |
| exit-address-family | |
| ! | |
| ip forward-protocol nd | |
| ! | |
| ! | |
| no ip http server | |
| no ip http secure-server | |
| ip route 172.17.1.0 255.255.255.0 Tunnel0 | |
| ! | |
| ! | |
| ! | |
| ! | |
| control-plane | |
| ! | |
| ! | |
| line con 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| stopbits 1 | |
| line aux 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| stopbits 1 | |
| line vty 0 4 | |
| login | |
| ! | |
| ! | |
| end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ! | |
| ! | |
| ! Last configuration change at 11:33:34 UTC Thu Jun 5 2014 | |
| ! | |
| version 15.2 | |
| service timestamps debug datetime msec | |
| service timestamps log datetime msec | |
| ! | |
| hostname R1 | |
| ! | |
| boot-start-marker | |
| boot-end-marker | |
| ! | |
| ! | |
| ! | |
| no aaa new-model | |
| no ip icmp rate-limit unreachable | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| no ip domain lookup | |
| ip cef | |
| ipv6 unicast-routing | |
| ipv6 cef | |
| ! | |
| ! | |
| multilink bundle-name authenticated | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ip tcp synwait-time 5 | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| interface Tunnel0 | |
| ip address 10.1.1.2 255.255.255.0 | |
| tunnel source FDE5:F699:8798::1 | |
| tunnel mode ipv6 | |
| tunnel destination FD5C:8D0A:8415::1 | |
| tunnel path-mtu-discovery | |
| ! | |
| interface Ethernet0/0 | |
| no ip address | |
| shutdown | |
| duplex auto | |
| ! | |
| interface GigabitEthernet0/0 | |
| ip address 172.16.1.1 255.255.255.0 | |
| media-type gbic | |
| speed 1000 | |
| duplex full | |
| negotiation auto | |
| ! | |
| interface GigabitEthernet1/0 | |
| no ip address | |
| negotiation auto | |
| ipv6 address FDE5:F699:8798::1/48 | |
| ! | |
| router bgp 65535 | |
| bgp router-id 172.16.1.1 | |
| bgp log-neighbor-changes | |
| no bgp default ipv4-unicast | |
| neighbor FDE5:F699:8798::2 remote-as 65530 | |
| ! | |
| address-family ipv4 | |
| exit-address-family | |
| ! | |
| address-family ipv6 | |
| network FDE5:F699:8798::/48 | |
| neighbor FDE5:F699:8798::2 activate | |
| exit-address-family | |
| ! | |
| ip forward-protocol nd | |
| ! | |
| ! | |
| no ip http server | |
| no ip http secure-server | |
| ip route 172.17.1.0 255.255.255.0 Tunnel0 | |
| ! | |
| ! | |
| ! | |
| ! | |
| control-plane | |
| ! | |
| ! | |
| line con 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| stopbits 1 | |
| line aux 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| stopbits 1 | |
| line vty 0 4 | |
| login | |
| ! | |
| ! | |
| end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ! | |
| ! | |
| ! Last configuration change at 13:58:33 UTC Thu Jun 5 2014 | |
| ! | |
| version 15.2 | |
| service timestamps debug datetime msec | |
| service timestamps log datetime msec | |
| ! | |
| hostname R2 | |
| ! | |
| boot-start-marker | |
| boot-end-marker | |
| ! | |
| ! | |
| ! | |
| no aaa new-model | |
| no ip icmp rate-limit unreachable | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| no ip domain lookup | |
| ip cef | |
| ipv6 unicast-routing | |
| ipv6 cef | |
| ! | |
| ! | |
| multilink bundle-name authenticated | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ip tcp synwait-time 5 | |
| ! | |
| ! | |
| crypto isakmp policy 10 | |
| hash sha512 | |
| authentication pre-share | |
| crypto isakmp key vpnuser address ipv6 FDE5:F699:8798::1/48 | |
| ! | |
| ! | |
| crypto ipsec transform-set vpnset esp-aes esp-sha512-hmac | |
| mode tunnel | |
| ! | |
| ! | |
| crypto ipsec profile vpnprofile | |
| set transform-set vpnset | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| interface Loopback1 | |
| ip address 10.1.2.1 255.255.255.0 | |
| ! | |
| interface Tunnel0 | |
| ip address 10.1.1.1 255.255.255.0 | |
| tunnel source FD5C:8D0A:8415::1 | |
| tunnel mode gre ipv6 | |
| tunnel destination FDE5:F699:8798::1 | |
| tunnel path-mtu-discovery | |
| tunnel protection ipsec profile vpnprofile | |
| ! | |
| interface Ethernet0/0 | |
| no ip address | |
| shutdown | |
| duplex auto | |
| ! | |
| interface GigabitEthernet0/0 | |
| ip address 172.17.1.1 255.255.255.0 | |
| media-type gbic | |
| speed 1000 | |
| duplex full | |
| negotiation auto | |
| ! | |
| interface GigabitEthernet1/0 | |
| no ip address | |
| negotiation auto | |
| ipv6 address FD5C:8D0A:8415::1/48 | |
| ! | |
| router bgp 65535 | |
| bgp router-id 172.17.1.1 | |
| bgp log-neighbor-changes | |
| no bgp default ipv4-unicast | |
| neighbor FD5C:8D0A:8415::2 remote-as 65530 | |
| ! | |
| address-family ipv4 | |
| exit-address-family | |
| ! | |
| address-family ipv6 | |
| network FD5C:8D0A:8415::/48 | |
| neighbor FD5C:8D0A:8415::2 activate | |
| exit-address-family | |
| ! | |
| ip forward-protocol nd | |
| ! | |
| ! | |
| no ip http server | |
| no ip http secure-server | |
| ip route 172.16.1.0 255.255.255.0 Tunnel0 | |
| ! | |
| ! | |
| ! | |
| ! | |
| control-plane | |
| ! | |
| ! | |
| line con 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| stopbits 1 | |
| line aux 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| stopbits 1 | |
| line vty 0 4 | |
| login | |
| ! | |
| ! | |
| end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ! | |
| ! | |
| ! Last configuration change at 11:35:52 UTC Thu Jun 5 2014 | |
| ! | |
| version 15.2 | |
| service timestamps debug datetime msec | |
| service timestamps log datetime msec | |
| ! | |
| hostname R2 | |
| ! | |
| boot-start-marker | |
| boot-end-marker | |
| ! | |
| ! | |
| ! | |
| no aaa new-model | |
| no ip icmp rate-limit unreachable | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| no ip domain lookup | |
| ip cef | |
| ipv6 unicast-routing | |
| ipv6 cef | |
| ! | |
| ! | |
| multilink bundle-name authenticated | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ip tcp synwait-time 5 | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| interface Tunnel0 | |
| ip address 10.1.1.1 255.255.255.0 | |
| tunnel source FD5C:8D0A:8415::1 | |
| tunnel mode ipv6 | |
| tunnel destination FDE5:F699:8798::1 | |
| tunnel path-mtu-discovery | |
| ! | |
| interface Ethernet0/0 | |
| no ip address | |
| shutdown | |
| duplex auto | |
| ! | |
| interface GigabitEthernet0/0 | |
| ip address 172.17.1.1 255.255.255.0 | |
| media-type gbic | |
| speed 1000 | |
| duplex full | |
| negotiation auto | |
| ! | |
| interface GigabitEthernet1/0 | |
| no ip address | |
| negotiation auto | |
| ipv6 address FD5C:8D0A:8415::1/48 | |
| ! | |
| router bgp 65535 | |
| bgp router-id 172.17.1.1 | |
| bgp log-neighbor-changes | |
| no bgp default ipv4-unicast | |
| neighbor FD5C:8D0A:8415::2 remote-as 65530 | |
| ! | |
| address-family ipv4 | |
| exit-address-family | |
| ! | |
| address-family ipv6 | |
| network FD5C:8D0A:8415::/48 | |
| neighbor FD5C:8D0A:8415::2 activate | |
| exit-address-family | |
| ! | |
| ip forward-protocol nd | |
| ! | |
| ! | |
| no ip http server | |
| no ip http secure-server | |
| ip route 172.16.1.0 255.255.255.0 Tunnel0 | |
| ! | |
| ! | |
| ! | |
| ! | |
| control-plane | |
| ! | |
| ! | |
| line con 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| stopbits 1 | |
| line aux 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| stopbits 1 | |
| line vty 0 4 | |
| login | |
| ! | |
| ! | |
| end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ! | |
| ! | |
| ! Last configuration change at 10:42:49 UTC Thu Jun 5 2014 | |
| ! | |
| version 15.2 | |
| service timestamps debug datetime msec | |
| service timestamps log datetime msec | |
| ! | |
| hostname R3 | |
| ! | |
| boot-start-marker | |
| boot-end-marker | |
| ! | |
| ! | |
| ! | |
| no aaa new-model | |
| no ip icmp rate-limit unreachable | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| no ip domain lookup | |
| ip cef | |
| ipv6 unicast-routing | |
| ipv6 cef | |
| ! | |
| ! | |
| multilink bundle-name authenticated | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ip tcp synwait-time 5 | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| interface Loopback0 | |
| ip address 10.3.3.1 255.255.255.252 | |
| ! | |
| interface Ethernet0/0 | |
| no ip address | |
| shutdown | |
| duplex auto | |
| ! | |
| interface GigabitEthernet0/0 | |
| no ip address | |
| media-type gbic | |
| speed 1000 | |
| duplex full | |
| negotiation auto | |
| ipv6 address FD5C:8D0A:8415::2/48 | |
| ! | |
| interface GigabitEthernet1/0 | |
| no ip address | |
| negotiation auto | |
| ipv6 address FD66:F6D0:AD72::1/48 | |
| ! | |
| router bgp 65530 | |
| bgp router-id 10.3.3.1 | |
| bgp log-neighbor-changes | |
| no bgp default ipv4-unicast | |
| neighbor FD5C:8D0A:8415::1 remote-as 65535 | |
| neighbor FD66:F6D0:AD72::2 remote-as 65530 | |
| ! | |
| address-family ipv4 | |
| exit-address-family | |
| ! | |
| address-family ipv6 | |
| network FD5C:8D0A:8415::/48 | |
| network FD66:F6D0:AD72::/48 | |
| neighbor FD5C:8D0A:8415::1 activate | |
| neighbor FD66:F6D0:AD72::2 activate | |
| exit-address-family | |
| ! | |
| ip forward-protocol nd | |
| ! | |
| ! | |
| no ip http server | |
| no ip http secure-server | |
| ! | |
| ! | |
| ! | |
| ! | |
| control-plane | |
| ! | |
| ! | |
| line con 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| stopbits 1 | |
| line aux 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| stopbits 1 | |
| line vty 0 4 | |
| login | |
| ! | |
| ! | |
| end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ! | |
| ! | |
| ! Last configuration change at 10:42:41 UTC Thu Jun 5 2014 | |
| ! | |
| version 15.2 | |
| service timestamps debug datetime msec | |
| service timestamps log datetime msec | |
| ! | |
| hostname R4 | |
| ! | |
| boot-start-marker | |
| boot-end-marker | |
| ! | |
| ! | |
| ! | |
| no aaa new-model | |
| no ip icmp rate-limit unreachable | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| no ip domain lookup | |
| ip cef | |
| ipv6 unicast-routing | |
| ipv6 cef | |
| ! | |
| ! | |
| multilink bundle-name authenticated | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ip tcp synwait-time 5 | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| interface Loopback0 | |
| ip address 10.4.4.1 255.255.255.252 | |
| ! | |
| interface Ethernet0/0 | |
| no ip address | |
| shutdown | |
| duplex auto | |
| ! | |
| interface GigabitEthernet0/0 | |
| no ip address | |
| media-type gbic | |
| speed 1000 | |
| duplex full | |
| negotiation auto | |
| ipv6 address FDE5:F699:8798::2/48 | |
| ! | |
| interface GigabitEthernet1/0 | |
| no ip address | |
| negotiation auto | |
| ipv6 address FD66:F6D0:AD72::2/48 | |
| ! | |
| router bgp 65530 | |
| bgp router-id 10.4.4.1 | |
| bgp log-neighbor-changes | |
| no bgp default ipv4-unicast | |
| neighbor FD66:F6D0:AD72::1 remote-as 65530 | |
| neighbor FDE5:F699:8798::1 remote-as 65535 | |
| ! | |
| address-family ipv4 | |
| exit-address-family | |
| ! | |
| address-family ipv6 | |
| network FD66:F6D0:AD72::/48 | |
| network FDE5:F699:8798::/48 | |
| neighbor FD66:F6D0:AD72::1 activate | |
| neighbor FDE5:F699:8798::1 activate | |
| exit-address-family | |
| ! | |
| ip forward-protocol nd | |
| ! | |
| ! | |
| no ip http server | |
| no ip http secure-server | |
| ! | |
| ! | |
| ! | |
| ! | |
| control-plane | |
| ! | |
| ! | |
| line con 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| stopbits 1 | |
| line aux 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| stopbits 1 | |
| line vty 0 4 | |
| login | |
| ! | |
| ! | |
| end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment