GroupStudy.com - CCIE, CCNA, CCNP and other Cisco Certifications

Home

BookStore

StudyNotes

Links

[Chronological Index] [Thread Index] [Top] [Date Prev][Date Next] [Thread Prev][Thread Next]

Subject: Re: IPSec over Tunnel - not working !! [7:62124]
From: "jose" <jose12@xxxxxxxxxxx>
Date: Wed, 29 Jan 2003 22:04:21 GMT

Hi,

First, you should apply the crypto to the physical an the logical
interfaces.

Second, define only gre traffic for the access-list

Third, try to change the IP MTU size because the fragmentation  (1440 or
lower ) or configure the interface command "ip ospf mtu-ignore "

Last of all, multicast traffic cannot be "normally" be encrypted, that is
the reason to use a GRE tunnel and then encrypt GRE traffic

Cheers,

Jose

""Claudio Spescha""  wrote in message
news:200301292054.UAA14716@xxxxxxxxxxxxxxxxx
> Hello
>
> You should not encrypt the tunnel network itself.
> First line of access-list 199 should be: access-list 199 deny ip
120.20.59.0
> 0.0.0.255 120.20.59.0 0.0.0.255
> The router can not build an OSPF adjacency on encrypted traffic.
>
> see you
> Claudio




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=62141&t=62124
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to abuse@xxxxxxxxxxxxxx

Prev by Date: Re: BGP prefix list question [7:62138]
Next by Date: RE: IP unnumbered for HDLC connection [7:62134]
Previous by thread: RE: IPSec over Tunnel - not working !! [7:62124]
Next by thread: RE: IPSec over Tunnel - not working !! [7:62124]
Index(es):
- Date
- Thread