Cisco Simple GRE with IPSEC Tunnels
Jul01

Cisco Simple GRE with IPSEC Tunnels

Posted By on Jul 1, 2025

 GRE with IPSEC KB ID 0000951 Problem I’ve spent years setting up VPN tunnels between firewalls. The only time I’ve ever dealt with GRE is for letting VPN client software though firewalls. GRE’s job is to ‘encapsulate’ other protocols and transport those protocols inside a virtual point to point link. Below is the topology, I’m going to use. The tunnel will run form Router R1 to Router R3, once...

Read More
Cisco – Configuring Dynamic Multipoint Virtual Private Networks DMVPN
May30

Cisco – Configuring Dynamic Multipoint Virtual Private Networks DMVPN

Posted By on May 30, 2025

DMVPN KB ID 0000954 Problem A while back I uploaded a run through on how to deploy GRE tunnels and protect those tunnels with IPsec. That point-to-point GRE tunnel is a good solution, but if you have a lot of sites it’s not a solution that scales very well. Yes you can have 2147483647 tunnel interfaces, but good luck manually configuring all those tunnels and even if you did, if you want each of your remote sites to talk to each...

Read More
Implementing GDOI into DMVPN
May29

Implementing GDOI into DMVPN

Posted By on May 29, 2025

GDOI into DMVPN KB ID 0000956  Problem Just recently I covered DMVPN, which is a great scalable system for adding new sites to your network infrastructure and have them join an existing VPN solution without the need to add extra config at the ‘hub’ site. One of the advantages of DMVPN is it maintains VPN connections from your ‘Spoke’ sites back to the ‘Hub’ site, but if a spoke site needs to speak...

Read More
Cisco ASA: Received a DELETE PFKey message from IKE
Dec11

Cisco ASA: Received a DELETE PFKey message from IKE

Posted By on Dec 11, 2020

KB ID 0001720 Problem I was debugging a VPN tunnel today. (From a Fortigate to a Cisco ASAv). I was messing around with the encryption and hashing, when the tunnel fell over. Phase 1 was establishing fine but not Phase 2 (IPSEC).  I’ve got better skills on the ASA, so that’s where I was debugging; IPSEC: Received a PFKey message from IKE IPSEC: Parsing PFKey GETSPI message IPSEC: Creating IPsec SA IPSEC: Getting the...

Read More
Secure and Encrypt USB Drives
Nov17

Secure and Encrypt USB Drives

Posted By on Nov 17, 2015

KB ID 0000060  Problem We would be lost without the good old USB Key/Thumb drive in this day and age, now the floppy drive is officially dead its our primary method of moving files and software about. I have the habit of leaving both CD/DVD’s in clients servers and my thumb drive onsite because I have a head like a sieve =[ I did this the other week, and thankfully I was going to be away on course for the following week, so I...

Read More