Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
406
Views
5
Helpful
3
Replies

PIX and GRE Tunnels

Mel Popple
Level 1
Level 1

‎03-14-2007 02:07 AM

Is it possible to terminate GRE tunnels on to a PIX firewall?

It needs to be GRE tunnel and not any other type of VPN tunnel.

Thanks

Labels:
0 Helpful
3 Replies 3

kaachary
Cisco Employee
Cisco Employee

‎03-14-2007 02:31 AM

PIX firewall does not support termination of GRE tunnels. Can act as GRE passthrough though.

-Kanishka

Mel Popple
Level 1
Level 1
In response to kaachary

‎03-14-2007 06:38 AM

Sadly it's the data inside the GRE tunnels that we need to inspect. This could be most things but will definitely include multicast traffic (hence the need for GRE to get through the initial cloud).

Are Pix firewalls capable of examining the types of data inside a GRE packet as they would a normal packet?

Mel

0 Helpful

kaachary
Cisco Employee
Cisco Employee
In response to Mel Popple

‎03-14-2007 06:56 AM

Doesn't look like there's an inspect rule for GRE.

http://www.cisco.com/en/US/customer/products/ps6120/products_command_reference_chapter09186a008063f0e8.html#wp1666537

-Kanishka

0 Helpful
Customers Also Viewed These Support Documents