Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Route learned from Remote Network through IPSEC VPN Tunnel

Hi,

I have 100 remote sites connected to the main office via IPSEC VPN tunnel and I am using OSPF as routing protocol at the main office. How I will be able to see those remote networks on main office network? Any thoughts how to do that?

Thanks.

3 REPLIES

Re: Route learned from Remote Network through IPSEC VPN Tunnel

Hi,

IPsec VPNs only pass IP unicast traffic (meaning regular OSPF won't work through the tunnel).

But, you can make OSPF work through the tunnel if using unicast OSPF (defining the neighbors manually).

If all sites are routers you can use IPsec/GRE or better DMVPN.

If there are ASAs, you're stucked with unicast OSPF.

Federico.

New Member

Re: Route learned from Remote Network through IPSEC VPN Tunnel

Hi Federico,

I am replacing Nortel box to Cisco 3945. The problem is I have lot of remote sites and I have to stick to IPSEC tunnel. Question to you, after the tunnels are build up, do I see all the remote network on my routing table?

Thanks.

Re: Route learned from Remote Network through IPSEC VPN Tunnel

You say:

Question to you, after the tunnels are build up, do I see all the remote network on my routing table?

If you have plain IPsec, the only way to see OSPF routes of the remote sites through the tunnel is by configuring OSPF to work as unicast.

Here's an example on how to pass OSPF through plain IPsec (but is with ASAs):

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00804acfea.shtml

Federico.

513
Views
0
Helpful
3
Replies