5 configuring gre site to site with ipsec and ospf, Configuring gre site to site with ipsec and ospf – Black Box LR1102A-T1/E1 User Manual

Black Box LR11xx Series Router Configurations Guide

106

Step 5: Check the status of the tunnel by entering:

Blackbox> show ip interface tunnel t0

Step 6:Validate the tunnel configuration by entering:

Blackbox> show crypto ipsec policy all

Or enter:

Blackbox> show crypto ike policy all

18.5 Configuring GRE Site to Site with IPSec and OSPF

This example extends the previous IPSec configuration example by enabling Open Shortest Path First (OSPF) protocol which
provides redundant paths for the tunnel.

Step 1: To enable OSPF, add to the Black Box configuration above:

Step 2: Add to the Cisco configuration above

Step 3: To verify the OSPF configuration, enter:

Blackbox> show ip ospf interface all

NOTE

Using the redistribute connected command adds a recursive route to the tunnel destination. This will cause the tunnel to shut down. To prevent
this, add a 32-bit static route for the tunnel destinatio

n.

Blackbox/ configure > firewall internet

Blackbox/configure/firewall internet> policy 100 in proto gre self

Blackbox/configure/firewall internet/policy 100 in> exit

Blackbox/configure/firewall internet> policy 101 in service ike self

Blackbox/configure/firewall internet/policy 101 in> exit 2

Black Box configure> firewall corp

Blackbox/configure/firewall corp> policy 100 in self

Blackbox> configure terminal

Blackbox/configure> router routerid 2.2.2.2

Blackbox/configure> router ospf

Blackbox/configure/router/ospf> interface t0 area 0

Blackbox/configure/router/ospf> exit

cisco > config t

cisco(config)#router ospf 1

cisco(config-router)# network 103.1.1.0 0.0.0.255 area 0