[nsp] IPSEC tunnel mode

Victor Sudakov sudakov at sibptus.tomsk.ru
Tue Aug 26 14:21:53 EDT 2003


Could you please look at the diagram at http://noc.tomsk.ru/tmp/router.png

I want packets from hosts on Ethernet1 to be securely forwarded to R5
and then further to the Internet, without R2, R3 and R4 knowing about
the network on Ethernet1.

Do I have to build a GRE Tunnel between R1 and R5 to run IPSEC over
GRE, or could I just do with IPSEC tunnel mode only?

In normal circumstances I would configure Tunnel interfaces between R1
and R5 and make R5 the default gateway for R1, but I need encryption.

Thanks in advance for any input.

Victor Sudakov,  VAS4-RIPE, VAS47-RIPN

More information about the cisco-nsp mailing list