It will prompt for a
destination host IP in the peer router??™s internal network and then generate traf?¬?c
to that peer. SDM will generate an error report with suggested remedies if a tunnel
error is encountered.
Step 13. Choose Monitor > VPN Status > IPsec Tunnels.
NOTE: Each VPN tunnel con?¬?gured on the router can be monitored for
throughput and errors.
Figure 4-3 SDM Monitoring IPsec Site-to-Site Tunnel
46 Con?¬?guring GRE Tunnels over IPsec
Con?¬?guring GRE Tunnels over IPsec
This section refers to Figure 4-1 and provides details about the con?¬?guration of a GRE over
IPsec tunnel, in this case from Winnipeg to Edmonton.
The programming steps for con?¬?guring the Winnipeg router are as follows:
Step 1. Create the GRE tunnel.
Step 2. Specify the IPsec VPN authentication method.
Step 3. Specify the IPsec VPN IKE proposals.
Step 4. Specify the IPsec VPN transform sets.
Step 5a. Specify static routing for the GRE over IPsec tunnel.
Step 5b. Specify routing with OSPF for the GRE over IPsec tunnel.
Step 6. Enable the crypto programming at the interfaces.
NOTE: The Winnipeg and Edmonton routers are programmed to provide
connectivity for LAN and WAN, including any public to private IP translation.
Pages:
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54