Re: GRE/IPSEC Tunnel and loopback interface
- From: "Mimmus" <viggiani@xxxxxxxxxxx>
- Date: Mon, 30 Apr 2007 16:14:00 GMT
<Bod43@xxxxxxxxxxxxx> ha scritto nel messaggio
news:1177941940.948940.203710@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
You can use ANY ingerface on the router as a tunnelExactly what I done!
souce/destination.
The reason that loopbacks are preferred in general is that
with some network designs it is possible for the tunnel
source/dest interface to go down and even though there
is another path the tunnel will do down too. The loopbacks are
always up.
I do not have a perfect picture of you network I don't think,
but if each router has only one outside interface
and no other path then there will be no disadvantage in
using the external interface to terminate the tunnel.
Tunnel is absolutely a Point-to-Point one and using the loopback interface
caused some problems (see below...)
Beware recursive routing.Ok, I experimented this :-(
I ALWAYS put in static routing to the tunnel endpoints.
I don't know exactly why but, using the loopback interface, I had some loop,
peraphs due to another indirect link between tunnel endopoints advertised by
OSPF. I was not able to filter it.
Thanks again
Mimmus
.
- References:
- GRE/IPSEC Tunnel and loopback interface
- From: Mimmus
- Re: GRE/IPSEC Tunnel and loopback interface
- From: Bod43
- GRE/IPSEC Tunnel and loopback interface
- Prev by Date: Re: STANDBY-3-DUPADDR
- Next by Date: Re: 3750G - SFP Interface DOWN
- Previous by thread: Re: GRE/IPSEC Tunnel and loopback interface
- Next by thread: isdn backup ddr
- Index(es):
Relevant Pages
|
