View Single Post
  #3   (View Single Post)  
Old 29th August 2012
igy01 igy01 is offline
Port Guard
 
Join Date: Jan 2011
Posts: 20
Default

Quote:
Originally Posted by jggimi
But ... I do not understand how your second scenario would possibly have correct SAs and Flows, as this would never establish them with 192.168.1.1.

Have you tested either scenario?
Yes, I have tested both, and both scenario works (at least in lab).
Second scenario is strange to me also. That is reason for my question

In this scenario (second), tcpdump on interface rl0=192.168.1.1 I gave ESP packets, source addr=10.10.10.1 dest addr=192.168.1.2. So, on 192.168.1.1 there are passing out packet with source addr different than 192.168.1.1??? Is it ok?

Last edited by ocicat; 29th August 2012 at 12:18 PM. Reason: Please use [quote] & [/quote] tags when directly quoting others.
Reply With Quote