Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
942
Views
0
Helpful
2
Replies

EIGRP and OSPF over IPSec

pacafic_croc
Level 1
Level 1

‎05-01-2005 06:27 AM - edited ‎02-21-2020 01:45 PM

Why cant routing protocols like EIGRP and OSPF be tunneled through IPSec?

Apart from the GRE over IPSec, is there another solution for the same?

Labels:
0 Helpful
2 Replies 2

Richard Burts
Hall of Fame
Hall of Fame

‎05-01-2005 12:04 PM

Routing protocols like EIGRP and OSPF use multicast packets for their hello messages etc. IPSec processes unicast IP packets. That is why you can not run the routing protocols directly over native IPSec tunnels.

The GRE and IPSec tunnels are the only way that I know to run a routing protocol over IPSec protected connections.

HTH

Rick

HTH

Rick
0 Helpful

amorielljr
Level 1
Level 1

‎05-06-2005 09:03 AM

As stated before most routing protocols use multicast to transmit routing information and IPSEC was created for use with IP Unicast only. Depending on your VPN network design you should be able to use Reverse Route Injection instead of running the routing protocol across your VPN links. Of course the other way is to use IPSEC over GRE, which allows you to encapsulate a variety of protocols (not just IP Unicast). The following in a link to a Cisco Reverse Route Injection document.

http://www.cisco.com/warp/public/471/rri.html

0 Helpful
Customers Also Viewed These Support Documents