ospfv3 alias ospf6 and IPsec Tunnel

Hello,

Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.

If anyone seeing this has any ideas, please feel free to contribute!

Thanks,

Hi, 

We're still looking to get you an answer or help. Thanks for your patience!

Hello haymas,

I found this solution. Can you tell us if it helps, please?

To run OSPFv3 (also known as OSPF6) over an IPsec tunnel, ensure the following steps are completed:

1. Link-Local Address Configuration:

   • OSPFv3 requires a link-local address on the tunnel interface. Unlike broadcast interfaces, point-to-point interfaces like IPsec do not automatically configure link-local addresses.
   • Manually configure a link-local address on each end of the tunnel. For example:
     
     

     # config system interface edit "Tunnel_Interface" # config ipv6 set ip6-address fe80::1/64 end

2. OSPF6 Interface Configuration:

   • Ensure the IPsec interface is added to the OSPF6 configuration. This is done via the CLI:
     
     

     # config router ospf6 set router-id <router-id> # config area edit <area-id> next end # config ospf6-interface edit "<interface-name>" set interface "<ipsec-interface>" next end

3. Verification:

   • After configuration, verify the OSPF6 interface using:
     
     

     # get router info6 ospf interface

   • Ensure the IPsec interface appears in the output.
     
     

If the IPsec interface does not appear, double-check the link-local address configuration and ensure the interface is correctly added to the OSPF6 configuration.