Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
2288
Views
0
Helpful
5
Replies

When to use Gre Tunnels

opnineopnine
Level 1
Level 1

‎01-29-2015 05:05 AM - edited ‎03-07-2019 10:26 PM

Hi all,

 

Please can someone tell me it's what type of circumstances, you will use GRE tunnels. 

 

Thanks. 

Labels:
0 Helpful
5 Replies 5

davegibelli
Level 1
Level 1

‎01-29-2015 05:17 AM

The main use for GRE is to hide the network from the user(s). It also allows a stops a user from accessing devices on the network carrying the traffic assuming the user does not have access to the device doing the tunneling.

It is like IPsec without the encryption but has one advantage over IPsec in that a GRE can carry routing protocols.

0 Helpful

opnineopnine
Level 1
Level 1
In response to davegibelli

‎01-29-2015 07:10 AM

Hello,

 

And tunnels with no IPsec, ? 

 

I ask this because I have a customer with simple gre tunnels. Pointing to different places.

 

Regards.

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame
In response to opnineopnine

‎01-29-2015 07:19 AM

Depends on the underlying network.

For example a company may want to use GRE tunnels on their LAN or across an MPLS network for various reasons in which case they may well run without IPSEC because these are private networks.

If the underlying network is the internet though I would expect most companies to use IPSEC with the GRE tunnels.

Jon

0 Helpful

Joseph W. Doherty
Hall of Fame
Hall of Fame

‎01-29-2015 07:25 AM

Disclaimer

The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.

Liability Disclaimer

In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.

Posting

When you have a need for a p2p L3 capable link between two hosts when a physical p2p link isn't available.  Usually there's some routing issue that causes the need.

For example, I want to logically join two site networks, both using private addressing and both with connections to the Internet.  I can create a logical p2p L3 link between them using a GRE tunnel.  (If you're worried about transmitting your data across the Internet, it can be encrypted.)

BTW, there are other kinds of tunnels that might address a routing issue, but Generic Routing Encapsulation can be used in many cases, and is often supported by the equipment.

For more information, you might want to look at: http://en.wikipedia.org/wiki/Generic_Routing_Encapsulation

0 Helpful

Bekzod Fakhriddinov
Level 4
Level 4

‎01-29-2015 07:44 AM

when u have more than 2-3 ipsec vpns from your router so u neeed to know how to route packets p to proper vpn, so you need EIGRP/OSPF/RIP , but they will not work with ipsec ,  here GRE helps you , you need to run dynamic routing and GRE so routing will properly choose route .

its from CCNP routing course . u may have DMVPN -its remote sites connected with GRE over ipsec and routing is dynamic .

0 Helpful
Related community topics
Top