From: Simon Baxter (Simon.Baxter@xxxxxxxxxxxxxx)
Date: Wed Nov 15 2000 - 20:34:51 GMT-3
Are you encrypting a GRE tunnel over IPsec or running an IPsec tunnel
over a GRE tunnel?
A colleague of mine had a problem yesterday where he was trying to GRE
tunnel over an IPsec VPN. He had to do this because there seems to be
a problem with passing of IP broadcast traffic over an IPsec tunnel.
The problem he had was because he was attaching the IPsec peers to
loopback interfaces and also attaching the GRE tunnel peers to the
same loopback interfaces.
I don't know if this helps you at all??
Simon
-----Original Message-----
From: Rob Barton [mailto:robbarto@cisco.com]
Sent: Thursday, November 16, 2000 5:55 AM
To: Ccielab
Subject: IPsec problem
I am trying to encrypt an IPsec session over a GRE tunnle. As stated
many times on this list, it is necessary to have the crypto map
statement on both the tunnle and physical interfaces to make this
work. My problem is that I want to make the source and destination
interfaces of my GRE tunnel to be the loopback addresses of the
routers that are running ipsec, but so far it doesn't work. Do I have
to attach the cyrpto map statement to the tunnel, loopback, and
physical interface here? Has anybody successfully done this?
Thanks.
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:25:45 GMT-3