GRE Through ASA - No IPSec

Unanswered Question
jwjorgensen Mon, 07/16/2007 - 20:02


You can permit gre traffic through the router if not already permitted and set up the tunnels on the routers. Does the remote rouer support VPN, or is it sitting behind a device that does? You should configure a l2l tunnel between the devices to encrypt the gre traffic as you don't want the TCP traffic between the sites to be captured and reassembled.

Thanks for the reply. I am trying to build a GRE tunnel between two routers with an ASA in the middle. But, because the ASA is running PAT, I'm not sure how to permit GRE through the ASA. As you probably know, GRE doesn't have any TCP/UDP port numbers.

The remote router doesn't support VPN and is not required in our scenario.


This Discussion