QID:RTE235 GRE over IPSec tunnel - Printable Version +- How2pass.com Forums (https://www.how2pass.com/forum) +-- Forum: CCNP (https://www.how2pass.com/forum/forum-6.html) +--- Forum: CCNP ENARSI 300-410 Forum (https://www.how2pass.com/forum/forum-15.html) +--- Thread: QID:RTE235 GRE over IPSec tunnel (/thread-591.html)

QID:RTE235 GRE over IPSec tunnel - DriveOn - 05-30-2011 The answer is "The crypto isakmp configuration is not correct:.  However this question comes without an explanation.  Also I didn't think that IPSec questions would be on the ROUTE exam since the topic isn't covered extensively in the curriculum.  GRE is covered so I expected the answer to be GRE related but the correct answer appears to be IPSec related. Re: QID:RTE235 GRE over IPSec tunnel - sdunn96 - 06-03-2011 It is using the Tunnel Interface IP, when it should be configured using the LAN IP address for the routers physical interface. Which in this case would be 192.x.x.x 172.x.x.x is the Tunnel interface, so a virtual IP Re: QID:RTE235 GRE over IPSec tunnel - DriveOn - 06-03-2011 So you're referring to the line that reads "crypto isakmp key ******** address 172.16.1.2"?  That makes sense.  Still I think it helps to understand the Cisco security features which the ROUTE curriculum doesn't really delve into.  That's okay though.  Just makes me look forward to CCNA Security someday. Thanks again!