
In a [DMVPN](/dmvpn) topology, [NHRP](/nhrp) is used to resolve the next hop IP address to allow [routing](/routing) to operate correctly.  In such a topology, the NHRP purge request is a mechanism used to remove outdated or invalid entries from the NHRP cache. Here's a detailed look at how it works:

1. **Purpose of NHRP in DMVPN**: NHRP is used in DMVPN networks to facilitate the creation of direct tunnels between spoke sites in a hub-and-spoke [VPN](/vpn) topology. It allows spokes to dynamically learn the physical [IPv4](/ipv4) or [IPv6](/ipv6) addresses of other spokes, so they can establish direct, secure tunnels without routing traffic through the hub.
2. **NHRP Cache**: In the process of resolving network addresses, NHRP maintains a cache that maps the virtual addresses (used within the VPN) to the physical addresses (used on the underlying network) of the network nodes. This cache is crucial for efficient routing within the DMVPN.
3. **Need for Purging**: Over time, the NHRP cache may accumulate entries that are no longer valid. For example, a spoke might change its physical IP address, or a tunnel might become inactive. Keeping outdated entries can lead to inefficient routing and potential security issues.
4. **NHRP Purge Request**: The NHRP Purge Request is a message sent within the DMVPN network to trigger the removal of such stale or invalid entries from the NHRP cache. It can be initiated by a network device (like a router) that detects a change in the network topology, or as a routine maintenance procedure.
5. **Process**: When an NHRP Purge Request is received, the receiving device checks its NHRP cache. Any entries that match the criteria specified in the purge request are removed. This ensures that the NHRP cache remains up-to-date and reflects the current network topology.
6. **Benefits**: Regular purging of the NHRP cache helps maintain optimal network performance in a DMVPN setup. It ensures that the path information is current, which is critical for the efficient and secure routing of traffic within the VPN network.

The NHRP Purge Request in a DMVPN context is essentially a maintenance mechanism that helps ensure the NHRP cache is accurate and up-to-date, thereby supporting efficient and secure network operations.


Links:

https://forum.networklessons.com/t/dmvpn-phase-3-eigrp-routing/1313/25?u=lagapides



DMVPN - NHRP purge request

Cisco SD-WAN export with python

Cisco SD-WAN lab options

Cisco SD-WAN rebranding

Cisco SD-WAN request upload

Cisco SD-WAN save command

Cisco SD-WAN scp command

Cisco SD-WAN vEdge Troubleshooting

Cisco SD-WAN vManage tail log

Cisco SD-WAN verify connectivity in Service VPN

Cisco SD-WAN viptela overlay network bringup

Cisco's various lines of network switches

Classification and Marking of softphone applications

Cloud Service Model - Middleware

Cloud Service Model - Runtime

Cloud Service Models

Cloud service models - IaaS

Cloud service models - SaaS

CoPP - Best practices and operation

Configuration Register

Control Plane Policing (CoPP)

Control Plane Protection

DHCP - Broadcast flag

DHCP - Cisco Client ID format

DHCP - Client ID

DHCP - DHCPv6 and the default gateway

DHCP - Message Types

DHCP - Static binding use cases

DHCP - Using the MAC as the client ID on a Cisco device

DHCP Auto Image Update support

DHCP DORA process

DHCP Request message sent as broadcast

DHCP Snooping on a multi-switch topology

DHCP client options on Cisco IOS

DHCP decline message

DHCP excluding address on a Cisco IOS DHCP server

DHCP multiple IP helper-addresses

DHCP multiple servers on the same subnet

DHCP offer message sent as broadcast

DHCP option 82

DHCP relay agent

DHCP relay support for MPLS VPN

DHCP renewal rebinding

DHCP snooping rate limiting best practice

DHCP trusted and untrusted ports

DHCP

DHCPv6 - determining the IPv6 prefix assigned to an interface

DHCPv6 lease times on a Cisco IOS device

DHCPv6 relay agent

DMVPN - IPsec encryption order of operations

DMVPN - NHRP session attributes

DMVPN - OSPF and multiple areas

DMVPN - Phase 2 BGP peerings

DMVPN - Phase 2 EIGRP neighbor adjacencies

DMVPN - Phase 2 OSPF neighbor adjacencies

DMVPN - Phase 2 and multicast traffic

DMVPN - Phase 2 and summarization

DMVPN - Using the GRE tunnel key

DMVPN - What is the best routing protocol to use

DMVPN - mappings on hub and spokes

DMVPN - multicast commands

DMVPN - nhrp map and nhs command syntax

DMVPN - spoke redundancy

DMVPN - using a default route

DMVPN State of a tunnel

DMVPN dual hub dual cloud

DMVPN dual hub single cloud

DMVPN hierarchical topology

DMVPN redundancy options

DMVPN with more than two hubs

DMVPN

DNS - Authoritative Flag

DNS - Authoritative Server

DNS - Caching

DNS - Recursive Resolver

DNS - What is a delegation zone

DNS - stub zone

DNS - understanding zones

DNS cache windows PC

DSL - Asymmetric Digital Subscriber Line (ADSL)

DTP - Sending of Frames

DTP - best practice to disable

DTP - how to disable

Decrypt IPSec ESP traffic with Wireshark

Demarcation point

Difference between per-prefix LFA and per-link based LFA

Differences between CCIE and CCDE lab exams

Diffserv recommended configuration

Distribute-lists - using route maps to set attributes

Distribute-lists and named extended ACLs

EEM - action mail

EEM Cisco Embedded Event Manager

EEM Matching a string within CLI output

EEM sync and skip keywords

EIGRP - Advertised metric is cumulative

EIGRP - Advertising a route using the network command

EIGRP - Hello interval and Hold time