cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
394
Views
0
Helpful
4
Replies

Dynamic routing over IPSec

GREGORY GEE
Level 1
Level 1

Can someone give me an example on how to get

a dynamic routing protocol such as RIP to be

used instead of static routes? I have looked

and all I could find was to use a GRE in IPSec.

Can't I do it over IPSec.

Also, if I can use RIP, do I still have to use

a MATCH statement in the crypto-map to list all

the remote subnets or just the remote router?

Thanks,

Greg

4 Replies 4

jerry.roy
Level 1
Level 1

No way to do it unless you encapsulate it inside of GRE. There are some good examples here so do a search. Be careful where you terminate your GRE tunnel though. It won't work out if you try to terminate the GRE tunnel on a Spoke site WAN interface. If the IP is assigned Via DHCP or PPPoE, it is a moving Target. Use the Lan Interface. The Hub side WAN interface would be fine since it should always be fixed.

That's what I thought. Something else you said got my attention. You mentioned that a WAN interface that uses DHCP or PPPoE is a moving target. Can you use IPSec on a dynamic IP interface? I assume the peer is not set or is done differently. I'll have to look this one up. Do you have any quick references to this?

Thanks for your help.

Greg

sorry. this is a better link. it has the sample config. All though we are not using it, but I know it's doable.

http://www.cisco.com/warp/customer/110/dynamicpix.html

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: