Normal IP Security (IPSec) configurations cannot transfer routing protocols, such as Enhanced Interior Gateway Routing Protocol (EIGRP) and Open Shortest Path First (OSPF), or non-IP traffic, such as Internetwork Packet Exchange (IPX) and AppleTalk. This document illustrates how to route between different networks that use a routing protocol and non-IP traffic with IPSec. This example uses generic routing encapsulation (GRE) in order to accomplish routing between the different networks.
Refer to Configuring IPsec Router-to-Router Hub and Spoke with Communication Between the Spokes for information on how to configure a hub and spoke IPSec design between three routers.
Refer to Configuring Router-to-Router IPSec (Pre-shared Keys) on GRE Tunnel with IOS Firewall and NAT for information on how to configure the basic Cisco IOS® Firewall configuration on a GRE tunnel with Network Address Translation (NAT).
Refer to PIX/ASA 7.x and later : VPN/IPsec with OSPF Configuration Example for more information on how to configure for a VPN/IPsec with Open Shortest Path First (OSPF) on Cisco PIX Security Appliance Software Version 7.x or Cisco Adaptive Security Appliance (ASA).
Refer to Adjusting IP MTU, TCP MSS, and PMTUD on Windows and Sun Systems for information about possible Maximum Transmission Unit (MTU) issues.
No comments:
Post a Comment