On Thu, Jun 16, 2005 at 12:51:53PM -0700, Michael Favinsky wrote: > Can two 3.7 servers running OSPFd talk OSPF to each other over an IPSEC > tunnel, or worded in another way, an enc interface? > > I have two sites with a WAN link and I want to use the Internet (VPN) as a > backup route. The concept is that under normal circumstances, the OSPF > routing table would have valid routes between the two sites over both the > VPN and WAN links. If the WAN link failed, there'd still be a valid route > between the two sites over VPN. >
AFAIK it was not yet tested. I'm not sure if it will work because the enc interface is not a real interface. I know it works over gre tunnels. Using the enc device may work but I'm not sure about it (until now I never had to use IPsec). Btw. use -current ospfd and ospfctl because many bug fixes and additional features went into the tree lately. -- :wq Claudio
