WIKIABOUT

FOR TIPS, gUIDES & TUTORIALS

subscribe to our Youtube

GO TO YOUTUBE

14455 questions

17168 answers

28195 comments

0 members

Most popular tags

rut955 rut240 rut950 rutx11 rms vpn to openvpn wifi not sms trb140 firmware connection - ipsec on rutx12 rutx09 modbus
We are migrating to our new platform at https://community.teltonika.lt. Moving forward, you can continue discussions on this new platform. This current platform will be temporarily maintained for reference purposes.

ipv4 settings, advanced questino

0 votes
120 views 0 comments
by anonymous
Hi all:

We using GRE over IPSec to a Cisco IOS router using a crypto map on the Cisco. We bring up IPSec first and then the GRE after the IPSec is up and the GRE is "inside" the IPSec tunnel.

Strongswan on the RUT-950 always initiates the tunnels.

What happens, about 20% of the time, is the IPSec tunnel comes up (100% reliable) but the GRE tunnel does not, hence no connectivity.

So, I turned on GRE keepalives in the Cisco and to make this work on the RUT-950 boxes I did this:

echo 1 > /proc/sys/net/ipv4/conf/default/accept_local

echo 1 > /proc/sys/net/ipv4/conf/all/accept_local

Now the GRE tunnels come up every time all the time.

What are the security ramifications of enabling those accept_local flags?

Cheers,

John

1 Answer

0 votes
by anonymous

Hello,

Thank you for contacting.

May i know what is the firmware you are using on Rut950 ? 

Have you tried using the latest ?

Just to see that if you still need to add these scripts. 

Thanks.