I have read one cisco documents as per doc , IPSec does not support IP multicast , but when we use netscreen firewall ( end to end ) IPsec tunnel on internet, this will routing internet, how this both things are different.
If we are talking pure IPSec as per the standards then IPSec is for unicast IP traffic and does not support multicast.
For the most common of the Interior Routing Protocols (especially OSPF and EIGRP) they require multicast for their routing packets. So traditional IPSec did not support Interior routing protocols. The solution was to combine IPSec (not support multicast) with GRE which does support multicast to be able to route with OSPF or EIGRP over IPSec tunnels.
In recent releases Cisco has given an enhancement called Virtual Tunnel Interface and with VTI you run IPSec, do not run GRE, and it is able to support OSPF and EIGRP routing.
I am not clear what the Netscreen is doing. It would be logical that they might be translating all the local addresses to send them over the Internet. And if they were translating all the addrersses then they could establish connectivity over an IPSec tunnel which would provide connectivity to the networks on both ends and still not be running a routing protocol through the IPSec tunnel. If that is not what is happening then perhaps someone who has more experience with this vendor can clarify what is being done here.
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.