This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Tunnel option missing from IP Route command

Go to solution
gmoneyup1
New Contributor II

‎09-17-2022 03:02 AM

Am I missing something?

ICX-7450 with the IPSEC service module, running 08.0.90f Router Code

I am relatively new to Ruckus and the prior team deployed IPSEC tunnels across untrusted spaces.  While setting up a new location I am able to establish an IPSEC tunnel with a remote end.  

The issues is when I type: "ip route" ,I am missing the "tunnel" option to route traffic through the tunnel interface.  One thing I can think of is that I configured all the IPSEC information before realizing the IPSEC module was missing from the device, but not sure if this is the issues.  Looking through documentation the tunnel id is part of the ip route command... thanks for the help

0 Kudos
1 ACCEPTED SOLUTION

Go to solution
gmoneyup1
New Contributor II
In response to BenBeck

‎09-22-2022 01:36 AM

BenBeck, I finally figured it out, it looks as if the L3 license was never installed on the device (SMH)... this is a lesson well earned.

View solution in original post

7 REPLIES 7

Go to solution
gmoneyup1
New Contributor II
In response to BenBeck

‎09-22-2022 01:36 AM

BenBeck, I finally figured it out, it looks as if the L3 license was never installed on the device (SMH)... this is a lesson well earned.

Go to solution
rick_macchio_5d
New Contributor II

‎09-20-2022 06:16 AM

Is everything in the default-vrf or are you dealing with different vrfs? 

Typically, the tunnel interface would be part of an internal vrf (if using multiple vrfs).  If your context is the default-vrf for the route, the tunnel interface would not be visible as a next hop option.  

If everything is part of the default-vrf, you'll have to keep in mind limitations related to using the same routing protocol (e.g., OSPF) on both the inside and the outside of the tunnel.  

0 Kudos

Go to solution
va10461
RUCKUS Team Member

‎10-15-2023 08:03 PM

Hi @gmoneyup1,

 

Can you chck if configuration is correct as per config guide

IPsec Tunnel config as per config guide.

https://docs.commscope.com/bundle/fastiron-08090-securityguide/page/GUID-8585AB78-DE11-4D2C-9DD4-BC6...

Router1

Router1(config)# ipsec profile profA
Router1(config-ipsec-profile-profA)# exit

Router1(config)# Interface tunnel 20
Router1(config-tnif-20)# tunnel mode ipsec ipv4
Router1(config-tnif-20)# tunnel protection ipsec profile profA
Router1(config-tnif-20)# tunnel source 10.1.1.1
Router1(config-tnif-20)# tunnel destination 10.1.1.2
Router1(config-tnif-20)# ip address 10.0.0.1 255.255.255.0
Router1(config-tnif-20)# exit

Router2

Router2(config)# ipsec profile profA
Router2(config-ipsec-profile-profA)# exit

Router2(config)# Interface tunnel 20
Router2(config-tnif-20)# tunnel mode ipsec ipv4
Router2(config-tnif-20)# tunnel protection ipsec profile profA
Router2(config-tnif-20)# tunnel source 10.1.1.2
Router2(config-tnif-20)# tunnel destination 10.1.1.1
Router2(config-tnif-20)# ip address 10.0.0.2 255.255.255.0
Router2(config-tnif-20)# exit

Vivek Alaparthi
Staff TSE | CCNA | CCNP | RCNI

RUCKUS Networks, CommScope!

Follow me on LinkedIn

0 Kudos
Copyright © 2024 Khoros, LLC