gre tunnel & ipsec transport mode
Eric Masson
e-masson at kisoft-services.com
Wed Dec 17 06:02:13 PST 2003
>>>>> "Helge" == Helge Oldach <helge.oldach at atosorigin.com> writes:
Hello Helge,
Helge> I think the problem is that you need multicasts to exchange
Helge> routing updates through the tunnel. If I am not mistaken that is
Helge> supported with gif interfaces as well. Maybe you could do away
Helge> with gif?
I have a setup with gif tunnels atm, "it just works" (c) (r) (tm) ;)
Helge> This is odd. Do you have a chance to test this against another
Helge> IPSec box, e.g. a Cisco router configured with a GRE Tunnel
Helge> interface?
Nope atm, the archives of this list show a similar case in June 2003
with no answer.
>From section 3.4 of the following document, encapsulating gre tunnels in
ipsec transport should "just work"
http://decoy.khaotic.net/~say/files/FreeBSD-WIN2K-IPSEC-HOWTO.html
Thanks for your help.
Eric Masson
--
Tu as lu les docs. Tu es devenu un informaticien. Que tu le veuilles
ou non. Lire la doc, c'est le Premier et Unique Commandement de
l'informaticien.
-+- TP in: Guide du Linuxien pervers - "L'évangile selon St Thomas"
More information about the freebsd-net
mailing list