Hi,
We have mGRE DMVPN tunnle between one Hub and 7 Spokes. Other 6 Spokes are working fine but one Spoke is not connecting to Hub.
Spoke shows DMVPN on IKE state (tunnle is not working) and Hub is not adding nhrp entry in table.
Spoke DMVPN Tunnel
Please help.
Hub:
Spoke:
When I do Show crypto isakmp sa on Spoke it is empty same in Hub it dosen't show this Spoke5's entry.
This is what is see debug crypto isakmp
Hub:
Spoke:
Show crypto isakmp sa on Spoke it is empty same in Hub it dosen't show this Spoke5's entry.
Tunnel mode is already set as gre multipoint on both side.
I searched and found out keepalives is not supported on DMVPN. Where and how do you want me to config keepalive on Hub and Spoke?
I inserted keepalive command for ISAKMP and now I see QM_IDLE state in both Hub & Spoke for each other when I do sh cryprto isakmp sa.
Also, I do see in Hub details when I do sh crypto ipsec sa in Spoke but when I do sh crypto ipsec sa in a Hub I do not see Spoke details.
Now, when I do sh dmvpn in Spoke it shows NHRP State all the time and in Hub dosen't show entry of this spoke.
IPsec Transform-Sets are already sets in both Hub and Spoke from beginning.
Hub:
Spoke:
Yes you are right, there is an issue with NHRP Registration.
Don't want to change tunnel mode in Hub because other Spokes are connected and don't want mess with them.
Also, this Spoke was working with transport mode.
As you recommended, I changed mode tunnel for Spoke.
This is what is see in Hub-sh log
And Spoke WAN Interface do not use DHCP or PPPoE to get IP.
