Hello, Has anyone been able to implement multiple VXLANs over virtual
wire pair as described in the Fortigate link below? I have tried this in
the lab and the IPSec tunnel does not come up and it does not work. Has
anyone made this work?
https://kb.f...
Hello, Is it possible to send layer 2 VXLAN and other layer 3 traffic
over the same IPSec VPN? I have tested VXLAN over IPSec in the lab but I
didn't test if I can use the same IPSec VPN carrying the VXLAN to send
layer 3 traffic from one site to ano...
emnoc wrote:1st off, the ipsec does not looking like vxlan-ipsec. It's
missing at minimal "set encapsuationl vxlan " The error in the debug is
stating you have no policy defined for the define ipsec-interface. So
ike and ipsec will never fully establ...
toshiesumi wrote:I would say no, not possible, because VXLAN over IPSec
uses IPsec encapsulation in phase1 config, unlike "native" VXLAN with
VLANs. So far I don't see a way to carry VLAN tags over VXLAN over IPsec
either.Maybe in 6.6? Toshi Thanks T...
emnoc wrote:You can always use a loop0 interface and set that as the src
-address. You will need a rule to SNAT the address and ensure NAT-T is
used. I would also defined a peerid ( string, fqdn or email ....just
pick one ) Ken Felix Hello Ken, Is th...
You are leaving our website
You are leaving our site and we cannot be held responsible for the content of external websites
