Re: EIGRP or OSPF over WAN

arell12 wrote:
anybody43@xxxxxxxxxxx wrote:
BernieM wrote:
"arell12" <arell12@xxxxxxxxx> wrote in message
news:1152335875.784122.129950@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I am new to cisco and testing some stuff out. I am trying to use the
routing protocols EIGRP and OSPF so that 2 routers on different subnets
see each other. I have 2 internet connections and each has a firewall
and Cisco Router and 1 computer. I have made each LAN have a different
subnet. LAN A - 172.16.116.0/22 and LAN B 172.16.120.0/22 and they
each have a externa lP address. I have setup an IPsec tunel between
the firewalls and these two networks are connected but the routers do
not see each other. From LAN A I can connect to the firewall and
computer from LAN B and vice versa but I cannot connect to the router
on LAN B from LAN A and vice versa. I know that each router is sending
out the hello packets for each protocol but it is not reaching the
other LAN.

The Hello packets are 'multicast' and wouldn't normally get forwarded by the
firewalls. You'll have to specifically configure them to do this or have
them run the same routing potocols as the routers ... OSPF should at least
be an option but I doubt EIGRP will be. Do the routers need to be running
two IRG's or are you just playing around?
Search the Cisco site for [IPSEC GRE].

What kind are the Firewalls and do you control them?

If your router's outside address is not natted by
the firewalls this will be OK. If they are nated
it may be OK I don't know.

http://www.cisco.com/en/US/tech/tk827/tk369/technologies_configuration_example09186a00800946b8.shtml

Just miss out the "inspect" and NAT and you will be OK I think.

I will try each of what you have suggested. This is a test that I am
doing so thats why they are running multiple Protocols. The firewalls
are controlled by me and they are m0n0walls.
Question: Would this be a typical setup between a head office and a
branch office? I understadn that routers route traffic between
networks, but I dont understand why you would need a router in this
situation.

Thanks

best to use eBGP for going through firewalls and hoping across to subnets when interfaces of each end routers are on different subnets.

.

Relevant Pages

  • Re: Router to router VPN remote site login to Office domain?
    ... The basic problem is that your routers are set up to route between the ... two private subnets. ... address and make it the default gateway of the LAN. ... > We think we are really close to having the new remote location ...
    (microsoft.public.win2000.ras_routing)
  • Re: EIGRP or OSPF over WAN
    ... routing protocols EIGRP and OSPF so that 2 routers on different subnets ... I have 2 internet connections and each has a firewall ... LAN A - 172.16.116.0/22 and LAN B 172.16.120.0/22 and they ... the firewalls and these two networks are connected but the routers do ...
    (comp.dcom.sys.cisco)
  • Re: Misconceptions
    ... > True routers route traffic much like the old railroad turntables ... Firewalls implement security policies or rules ... > handled by anti-virus programs, which should be on the ... > A NIDS is just that. ...
    (comp.security.firewalls)
  • Re: Misconceptions
    ... >> NAT can be implemented on many routers, but only on stub network (the ... usually a private/office network) routers. ... >> Routers are NOT firewalls. ... >> A NIDS is just that. ...
    (comp.security.firewalls)
  • Re: Do I really need firewall? A newbies question
    ... their own firewalls and you have the major ports blocked for the IPs ... you have assigned to your computers why would there be a reason to put ... router firewalls (on routers that I can afford lol) because it can lead ... I think this leads back to the age-old debate of which is better - ...
    (comp.security.firewalls)