VTI

Unanswered Question
Mar 1st, 2007

hello all,

I have a hub and spoke vpn setup using dvti on the hub and static vti on the spokes. everthing works, but whenever I send icmp packets between the spoke and hub, my sniffer trace shows them as unencrypted. If I source the icmp from a lan interface, those icmp packets are encrypted. Any thoughts why this is happening? I want ALL traffic encrypted. I have to roll this out to +100 sites

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
r-simpson Wed, 03/07/2007 - 14:26

One possible reason could be you running a sniff program somewhere on your network before the VPN takes control. If so, can you try sniffing from an external source to see what the wire is actually seeing? I think the sniffer may be seeing the traffic before the VPN takes control of it.

Actions

This Discussion