Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
504
Views
0
Helpful
1
Replies

GRE + IPSec vs IPSec

slavon
Level 1
Level 1

‎02-19-2003 05:49 AM - edited ‎02-21-2020 12:21 PM

I have central site and 8 brunches and I need to create tunnel to them to exchange ip traffic only. It can be done in two ways

1. create GRE tunnel and encript it by IPSec.

2. Do not create GRE tunnel. Use only IPSEC.

First approach has two advantages.

a)tunnel interfaces can be easily shutdowned

b)different access lists can be applied to each tunnel interface

Drawbacks-some overhead and lower mtu. But I still can't made my mind what is better. Can anyone share thought and personal experience about better way to configure tunnels.

Labels:
0 Helpful
1 Reply 1

awaheed
Cisco Employee
Cisco Employee

‎02-19-2003 11:24 AM

Hi Lavon,

Another thing you may want to keep in mind while considering this is "Multicast/Broadcast traffic". You can run routing protocols through the GRE/IPSEC solution and non-IP traffic aswell in case you need it in the future.

Hope this helps,

Regards,

Aamir

-=-

0 Helpful
Customers Also Viewed These Support Documents