reverse-route in IPsec

Unanswered Question
Jul 21st, 2009

Dear all,

Can anybody explain the use of reverse-route in Ipsec with help of any diagram.

Please help

Regards

Mahesh

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Loading.
mahesh-gohil Tue, 07/21/2009 - 20:44

I have below network

Remote client---> Ipsec router----> MPLS cloud----> customer network

I have enabled reverse-route for one vrf called RAVPN-TESTING on Ipsec router

-----------

crypto dynamic-map RAVPN-TESTING 10

set transform-set CommonTransform

set isakmp-profile RAVPN-TESTING

reverse-route

-----------

I am running BGP between MPLS cloud and customer network .

Now whether I enable or disable reverse-route I am always receiving the Ipsec assigned Ip address 192.168.1.2/32 in customer network

I am not clear what is the role of reverse-route here

Thanks in advance

Collin Clark Wed, 07/22/2009 - 06:51

Basically it enters the far end subnets into the local routing table. From there you can redistribute it into your interior routing protocol.

mahesh-gohil Wed, 07/22/2009 - 22:32

Hi collin,

You mean to say Ip assigned to remote cliendt will be available to customer network of central site or i understood wrongly

Please explain

thanks in advance

Collin Clark Thu, 07/23/2009 - 05:21

In a L2L there are not 'assigned IPs' so I think we have some confusion there.

Actions

This Discussion