Re: Replacing private lines with tunnels

["Chinna N.R. Pellacuru" <pcn@cisco.com>]

I guess, you could use GRE tunnels, to simulate the private lines over the
Internet, and then secure the GRE tunnels using IPSec (probably transport
mode). OSPF can run as before, which each GRE tunnel as a point-to-point
link.

    chinna

On Thu, 28 Sep 2000, Sanjai Narain wrote:

> Suppose gateway routers at several corporate sites are linked by a network of
> private (dedicated) lines. OSPF is configured on these routers. Since each each
> private line is a single IP subnet, OSPF would -automatically- accomplish
> any-to-any connectivity between the gateway routers. Now suppose the private
> lines are replaced by IPSec tunnels. Then any-to-any connectivity will be lost.
> This is because router interfaces at tunnel endpoints will, in general, not
> belong to the same subnet, so OSPF won't work.
> 
> So, what can be done to restore any-to-any connectivity between the gateway
> routers? In particular, do people implement a form of static routing over
> tunnels, i.e., direct the traffic coming out of one tunnel into another?
> 
> -- Sanjai
> 
> --
>    Sanjai Narain
>    Senior Research Scientist
>    Telcordia Technologies
>    Tel: +1 973 829 4515 Fax: +1 973 829 5888
>    Email: narain@research.telcordia.com
> 
> 

chinna narasimha reddy pellacuru
s/w engineer

---

References:

• Replacing private lines with tunnels
• From: Sanjai Narain <narain@research.telcordia.com>

---

• Prev by Date: Re: who does ESP padding > 8 bytes ?
• Next by Date: Re: ICMP "Destination unreachable" - should it be sent?
• Prev by thread: Replacing private lines with tunnels
• Next by thread: who does ESP padding > 8 bytes ?
• Index(es):
  • Main
  • Thread