From: Vivek Chauhan (vchauhan@globix.com)
Date: Fri Dec 09 2005 - 09:38:36 GMT-3
We have implemented IPSec tunnels ( between Nokia firewalls) and pass OSPF through GRE tunnels over IPSEc.
-----Original Message-----
From: nobody@groupstudy.com on behalf of Tim
Sent: Fri 09/12/2005 06:49
To: ccielab@groupstudy.com
Cc:
Subject: routing over vpn tunnels
Hi guys,
Yesterday I was in a meeting with a couple engineers from MCI and a client.
In this meeting the MCI engineers said that because they were using Lucent
routers, they could not run OSPF through the VPN tunnels connecting the
different sites.
According to these MCI engineers the Lucent routers support OSPF and they
support VPN but they don't support both running together.
This didn't make any sense to me.
How can that be?
Once it's determined (by virtue of an acl) that a packet should be forwarded
through the VPN tunnel, what difference does it make if the packet is an
OSPF packet or something else?
This was the issue this meeting was about.
This client has remote sites throughout North American. Each site has 2 VPN
tunnels - one going to a primary HQ site and a 2nd going to a backup HQ
site.
The 2 HQ sites are connected directed to each other through some high speed
links.
The objective is to have each remote site transmit traffic to the primary HQ
site unless the link to that site is down in which case the remote should
use the backup HQ site.
Currently, the remote sites aren't running any dynamic routing protocols.
They're using static routes.
So, here's the question. Is it possible these MCI engineers are correct?
TIA, Tim
_______________________________________________________________________
Subscription information may be found at:
http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Mon Jan 09 2006 - 07:07:50 GMT-3