Cisco Cisco 1800 2800 3800 8-Port Async Sync EIA-232 Serial High-Speed WIC
© 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Page 44 of 63
router ospf 10
log-adjacency-changes
network 10.10.0.0 0.0.0.255 area 0
!
!VPN network 10.10.0.0 (of which Tunnel2/Tunnel21 are part) is part of OSPF
area 0
area 0
!OSPF Hello will be sent across to branch-router via these tunnels
!
ip access-list extended gre-tunnel2
permit gre host 20.20.241.234 host 75.40.113.246
!
!access list defining the traffic that will be protected via IPsec. This is the
!traffic sent to the DSL interface at the remote end.
!
ip access-list extended gre-tunnel21
permit gre host 20.20.241.234 host 166.138.186.119
!
!access list defining the traffic that will be protected via IPsec. This is the
!traffic sent to the Cellular interface at the remote end.
!
Troubleshooting and Debugging
For details about the GRE tunnels and dynamic IP routing, refer to the following guide:
For IPsec troubleshooting, refer to Section 7, Site-to-Site IPsec VPN.
For dynamic routing using OSPF, refer to the Cisco technology page for OSPF:
These commands check the current status:
●
show interface tunnel <number>
●
debug tunnel: Enables the debugging for tunnel-related events
●
show ip interface brief: Checks to make sure that all the relevant interfaces such as cellular and tunnel
are operational and have appropriate IP address
●
show ip route: Checks to make sure that the dynamic routing protocol (OSPF) has populated routing
entries learned through the routing process; the OSPF entries start with “o” in the routing table
entries learned through the routing process; the OSPF entries start with “o” in the routing table
●
Show ip ospf database: To check the status of OSPF protocol related information
●
debug ip ospf commands: To troubleshoot if OSPF is converging the routing topology on the branch or
HQ side