×
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Contact US

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

Bridging Private Sites over Public Infrastructure

Bridging Private Sites over Public Infrastructure

Bridging Private Sites over Public Infrastructure

(OP)
Hi All,

I have a requirement to remote bridge between two private sites over an IP WAN link. I have the restrictions below:

1. The hub site and remote site must operate on the same subnet.
2. Hub and remote are private networks seperated by multiple hop public infrastructure.
3. Remote site hosts will use DHCP and be able to make requests to the DHCP server from the hub site.

As below:

(Hub 10.0.0.0/24)---->(Public IP Internet cloud)<----(Remote 10.0.0.0/24)

I understand this solution is completely inefficient and routing would be a much better way to go however these are the restrictions that I am dealing with.

Initially I thought using a GRE tunnel between hub and remote was the way to go but the more research I do the less I am convinced that I can bridge over GRE using Cisco.

Any thoughts?

Many thanks
El.Piegrandes

RE: Bridging Private Sites over Public Infrastructure

Hi


Are you going to use existing hardware or are you buying something?

I have a client who bridges between sites using Frame Realay between two 1750s.

They use a BVI (Bridging Virtual Interface) between the two routers for the connectivity. Because this is bridged & not routed your DHCP requests should go over the link as the bridge will pass broadcasts.

EB

RE: Bridging Private Sites over Public Infrastructure

(OP)
Hi

Well I'm using a 2651 and a 2811 for proof of concept so yes, using existing hardware.

I haven't had much experience with frame relay - will this allow me to encapsulate the bridged traffic to enable traversing a public network?

In the meantime I have made progress with my attempt at bridging GRE but am still not quite there. I have established a GRE tunnel between the two BVI interfaces of the two routers. The routers can ping each other's BVI interface but I'm not sure the bridging is configured correctly. The configs are below.

I want to bridge 192.168.63.0 from the Hub site to the Remote site. However I have not mentioned a 192.168.63.x address anywhere on the remote Router.

I have configured the Remote router Ethernet interfaces to bridge onto the GRE tunnel ... does this mean I should be able to put a 192.168.63.x host on one of these interfaces and expect it to be bridged?

Hub Router
bridge irb
!
interface Tunnel0
 ip address 1.1.1.2 255.255.255.0
 tunnel source BVI1
 tunnel destination 10.0.1.245
!
interface FastEthernet0/1
 no ip address
 duplex auto
 speed auto
 no cdp enable
 bridge-group 1
!
interface BVI1
 ip address 192.168.63.245 255.255.255.0
!
bridge 1 protocol ieee
bridge 1 route ip
!


Remote Router
bridge irb
!
interface Tunnel0
 ip address 1.1.1.1 255.255.255.0
 tunnel source BVI1
 tunnel destination 192.168.63.245
!
interface FastEthernet0/0
 no ip address
 duplex auto
 speed auto
 bridge-group 1
!
interface FastEthernet0/1
 no ip address
 duplex auto
 speed auto
 bridge-group 1
!
interface BVI1
 ip address 10.0.1.245 255.255.255.0
!
ip default-gateway 10.0.1.100
!
bridge 1 protocol ieee
bridge 1 route ip

RE: Bridging Private Sites over Public Infrastructure

Hi All,

I have a similar (and equally illogical) requirement.  Did you ever get the GRE solution to work?

Thanks!

RE: Bridging Private Sites over Public Infrastructure

I'm not overly familiar with it, but have you looked into using L2TP for this instead of GRE?

RE: Bridging Private Sites over Public Infrastructure

(OP)
Hi Guys,

No i didn't quite manage to get this working in the end. I've read that it is possible but I believe that Cisco does not support it - their recommended solution for this situation is L2TPv3 (for which you will require 12.3(2)T and above, depending on the Cisco model).

Here's an interesting thread discussing the two ...

http://www.velocityreviews.com/forums/t32485-l2tpv3-vs-gre-for-layer-2-bridging.html

Good luck!

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close