Yes the original IP addresses can be non routable. It will encapsulate original packet with another header which has routable IPs.
GRE is not necessary for IPsec tunnel mode operation. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Hussam Adili Sent: Wednesday, October 24, 2001 7:54 AM To: [EMAIL PROTECTED] Subject: IPsec question!!! [7:24020] Dear All, I have a question about IPsec tunnel mode. As I understood that it will encrypt the original packet with its IP header and it will use another IP header (the o/p interface address header) to route the packet over the Internet (any open network). Does this mean that the source address can be a non-routerable IP address and it can reach the destination address (which is also non-routable) through the IPsec tunnel ? Or, for such senario we need to use GRE tunnel first between the non-routable network addresses , then encrypt using IPsec? Your help is appreciated - Regards Hussam Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=24051&t=24020 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
