Skip to main content
gilbertog
gilbertog
New Member
June 1, 2018
Solved

No OSPF Interface showed

  • June 1, 2018
  • 2 replies
  • 28214 views

Hello,

 

Actually we are moving on a dynamic VPN tunnels topology. We configured site A with B tunnel successfully, with OSPF over IPSec configuration. Then, we started to configure site A with C, but when we finished, no route was added. We did exactly the same we did between sites A - B, but no same result.

 

Trying to resolve this, we did a get router info ospf interface and there is not the tunnels interfaces listed on both sites, just A - B interfaces and internal routing, but then we made an get router info protocols and there are listed network prefixes for sites A - B.

 

Checking everything, is the same configuration on both cases, but one works but the other doesn't.

 

I appreciate your answers. Thanks.

Best answer by ericli_FTNT

Glad to hear that! NP.

2 replies

Toshi_Esumi
SuperUser
Toshi_Esumi
SuperUser
June 1, 2018

Is the tunnel actually up? You probably wouldn't see ospf interface if the tunnel is down.

gilbertog
gilbertogAuthor
New Member
June 1, 2018

Yes, it is up. Actually, if we set up a static route it works fine. But no with OSPF.

Toshi_Esumi
SuperUser
Toshi_Esumi
SuperUser
June 1, 2018

Then, what did you configure under config ospf-interface? You must have configured two entries on A-side (for B and C), and only one on C-side (for A).

ericli_FTNT
Staff
ericli_FTNT
Staff
June 1, 2018

gilbertog wrote:

 

Checking everything, is the same configuration on both cases, but one works but the other doesn't.

Can you provide output of these commands:

 

show router ospf
diag vpn tunnel list
get router info ospf interface

 

So I could try to figure out where is the issue.

 

PS: Please double check your ipsec, I'm afraid there is something wrong on it.

gilbertog
gilbertogAuthor
New Member
June 1, 2018

Thanks for your time. Attached I send both configurations.

ericli_FTNT
Staff
ericli_FTNT
Staff
June 1, 2018

Not a problem.

 

To avoid routing problem, I suggest you not to enable redistribute connected/static until OSPF adjacency is up.

 

It seems that on  your site C, the tunnel "gw_MA_WAN2xVLN1" is not up yet. Because dec/enc are both 0.

 

Please check your IPSEC setting by:

 

show vpn ipsec phase1-interface
show vpn ipsec phase2-interface
diag debug app ike -1

Terms & ConditionsAccessibility statement