[c-nsp] tunnel packets
K bharathan
kbharatan at gmail.com
Sat Jun 11 01:51:50 EDT 2011
hi all
struggle to understand the following:
a packet travelled from remote ipsec (tunnel mode) tunnel point to endpoint
(hub & spoke tunnel )
source tunnel ip is 1.1.1.1 (wan ip)
remote tunnel ip is 1.1.1.2 (wan ip)
tunneling from a remote lan network of 10.10.0.0/24 to 10.0.10.0/24
if i understand correctly in ipsec tunnel mode the packets are encapsulated
with new source ip header ;
so the above packet will have source ip as 1.1.1.1 and destination as
1.1.1.2
now i if i want to route a specific destination packet to another gateway; (
this static route i will put on the hub router;)
so hub router will decrypt the packet and route to next hop;
what will be the soruce ip of the packet when it reaches the next gateway;
it shud be within any one of 10.10.10.0/24 ?
if so when packet comes back it reaches back to 10.0.10.0/24;
appreciate some clarities on this
-bharathan
More information about the cisco-nsp
mailing list