reverse-route in IPsec

mahesh-gohil · ‎07-21-2009

Dear all,

Can anybody explain the use of reverse-route in Ipsec with help of any diagram.

Please help

Regards

Mahesh

Collin Clark · ‎07-21-2009

Cisco documentation explains it thoroughly.

mahesh-gohil · ‎07-21-2009

I have below network

Remote client---> Ipsec router----> MPLS cloud----> customer network

I have enabled reverse-route for one vrf called RAVPN-TESTING on Ipsec router

-----------

crypto dynamic-map RAVPN-TESTING 10

set transform-set CommonTransform

set isakmp-profile RAVPN-TESTING

reverse-route

-----------

I am running BGP between MPLS cloud and customer network .

Now whether I enable or disable reverse-route I am always receiving the Ipsec assigned Ip address 192.168.1.2/32 in customer network

I am not clear what is the role of reverse-route here

Thanks in advance

Collin Clark · ‎07-22-2009

Basically it enters the far end subnets into the local routing table. From there you can redistribute it into your interior routing protocol.

mahesh-gohil · ‎07-22-2009

Hi collin,

You mean to say Ip assigned to remote cliendt will be available to customer network of central site or i understood wrongly

Please explain

thanks in advance

Collin Clark · ‎07-23-2009

In a L2L there are not 'assigned IPs' so I think we have some confusion there.