05-12-2022 03:55 PM
Hi,
If we are using an FTD device and building out a IPSEC VTI tunnel to connect to a distant end which is using IPSEC GRE and then route BGP over that, will the FTD be able to establish connection? I know it won't natively do GRE but will the two sides be able to get through phase1/2 and build a tunnel that way?
Solved! Go to Solution.
05-12-2022 04:17 PM
NO because there is GRE header add to packet and since both side not use same tunnel, then when other Peer receive this packet with GRE header it will drop it.
05-12-2022 04:06 PM
I do not believe that supports :
check the Limitation :
05-12-2022 04:17 PM
NO because there is GRE header add to packet and since both side not use same tunnel, then when other Peer receive this packet with GRE header it will drop it.
05-12-2022 04:45 PM
So that would be the reason why we are seeing ERROR: Auth exchange failed is because its effectively getting malformed by the GRE header drop?
05-12-2022 04:55 PM
Yes probably
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide