Firefly Perimeter – OSPF over GRE over IPsec

After attending the JNCIE-SEC bootcamp last week, I saw that one topic was barely mentioned: The way of running OSPF over GRE over IPsec. Since this setup is barely used (because of various reasons) I thought, that this is post-worthy – so here you have a working config (running on Firefly 12.1X47-D35.2

 

Topology:

Config for Firefly-A:

 

Config for Firefly-B:

Hope, that this helps you if you ever have to do this or need to learn this…
Remember – this is just a sample – please use stringer ciphers if possible 😉

The JNCIE-Exam is getting closer and closer…

3 thoughts on “Firefly Perimeter – OSPF over GRE over IPsec

  1. Khiz

    Hi
    Can you please,elaborate which interfaces have ips 172.16.19.x which are mentioned in vpn configs

    Thanks

    Reply
    1. christianscholz Post author

      You mean 172.16.16.x?
      Depends – the first usable subnet (/30) is the st0-Interface and the next usable is the gre-Interface.

      Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

Captcha * Time limit is exhausted. Please reload CAPTCHA.