Date: Wed, 17 Dec 2003 15:01:53 +0100 From: Eric Masson <e-masson@kisoft-services.com> To: Helge Oldach <helge.oldach@atosorigin.com> Cc: Mailing List FreeBSD Network <freebsd-net@FreeBSD.org> Subject: Re: gre tunnel & ipsec transport mode Message-ID: <86vfofczla.fsf@t39bsdems.interne.kisoft-services.com> In-Reply-To: <200312170832.JAA27711@galaxy.hbg.de.ao-srv.com> (Helge Oldach's message of "Wed, 17 Dec 2003 09:32:31 %2B0100 (MET)") References: <200312170832.JAA27711@galaxy.hbg.de.ao-srv.com>
next in thread | previous in thread | raw e-mail | index | archive | help
>>>>> "Helge" == Helge Oldach <helge.oldach@atosorigin.com> writes: Hello Helge, Helge> I think the problem is that you need multicasts to exchange Helge> routing updates through the tunnel. If I am not mistaken that is Helge> supported with gif interfaces as well. Maybe you could do away Helge> with gif? I have a setup with gif tunnels atm, "it just works" (c) (r) (tm) ;) Helge> This is odd. Do you have a chance to test this against another Helge> IPSec box, e.g. a Cisco router configured with a GRE Tunnel Helge> interface? Nope atm, the archives of this list show a similar case in June 2003 with no answer. >From section 3.4 of the following document, encapsulating gre tunnels in ipsec transport should "just work" http://decoy.khaotic.net/~say/files/FreeBSD-WIN2K-IPSEC-HOWTO.html Thanks for your help. Eric Masson -- Tu as lu les docs. Tu es devenu un informaticien. Que tu le veuilles ou non. Lire la doc, c'est le Premier et Unique Commandement de l'informaticien. -+- TP in: Guide du Linuxien pervers - "L'évangile selon St Thomas"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86vfofczla.fsf>