We manage de WAN for several customers. The branch offices are connected through a no secure network with GRE tunnels. The GRE tunnels are protected with IPSec. The tunnels are terminated on a Cisco 7206 VXR.
Now I have to the integrated firewall between the branch offices and corporate resources. The corporate resources are used by all customers. I have to install one firewall by customer.
I try to use VRF-lite (Multi-VRF) on the 7206 for separate each customer on a VRF instance and forward the branch offices flow on the right firewall.
With VRF-lite configured, the GRE tunnels go down when I put IPSec. But GRE and VRF works fine without IPSec. And GRE and IPSEc works fine without VRF.
Is somebody used successfully VRF-lite, GRE and IPSec together?
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...