Re: gre tunnel & ipsec transport mode

From: Eric Masson (e-masson_at_kisoft-services.com)
Date: 12/17/03

  • Next message: Bill Vermillion: "Re: suffering from poor network performance..." 
    To: Helge Oldach <helge.oldach@atosorigin.com>
Date: Wed, 17 Dec 2003 15:01:53 +0100

    >>>>> "Helge" == Helge Oldach <helge.oldach@atosorigin.com> writes:

    Hello Helge,

     Helge> I think the problem is that you need multicasts to exchange
     Helge> routing updates through the tunnel. If I am not mistaken that is
     Helge> supported with gif interfaces as well. Maybe you could do away
     Helge> with gif?

    I have a setup with gif tunnels atm, "it just works" (c) (r) (tm) ;)

     Helge> This is odd. Do you have a chance to test this against another
     Helge> IPSec box, e.g. a Cisco router configured with a GRE Tunnel
     Helge> interface?

    Nope atm, the archives of this list show a similar case in June 2003
    with no answer.

    >From section 3.4 of the following document, encapsulating gre tunnels in
    ipsec transport should "just work"
    http://decoy.khaotic.net/~say/files/FreeBSD-WIN2K-IPSEC-HOWTO.html

    Thanks for your help.

    Eric Masson 

    -- 
 Tu as lu les docs. Tu es devenu un informaticien. Que tu le veuilles
 ou non. Lire la doc, c'est le Premier et Unique Commandement de
 l'informaticien.
 -+- TP in: Guide du Linuxien pervers - "L'évangile selon St Thomas"
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
  • Next message: Bill Vermillion: "Re: suffering from poor network performance..."