<< Back to VPN Examples

Start >>

 

Example 5: GRE over IPsec, Site-to-Site, with Manual Keying

 

Example 5 is similar to Example 4, except in this case, the GRE traffic will be sent over the Internet, so GRE will be run over IPsec to secure the traffic. This time, ProCurve University has two sites that are connected through the Internet. HTTP clients on Site B will connect to the servers on Site A through a GRE over IPsec tunnel. The IPsec VPN will be established with manual keying instead of IKE because you cannot use IKE if you specify a service in the IPsec policy traffic selector.

To create the GRE over IPsec tunnel that is shown in the figure above, you must follow these steps:

  1. Configure the GRE tunnel. 

  2. Create named objects. 

  3. Configure a transport mode IPsec proposal. 

  4. Configure an IPsec policy with manual keying. 

  5. Create the firewall access policies. 

  6. Create static routes. 

You can skip to a step by clicking the corresponding  icon, or you can click Start >> to see the entire process from beginning to end.

<< Back to VPN Examples

Start >>