ExtremeWireless (WiNG)

 View Only

 vgva layer2 vpn - gre tunnel between AP and VGVA behind NAT

Andrea Ton's profile image
Andrea Ton posted 01-20-2022 04:54
Hello,
I've a problem setting up a guest ssid with traffic tunneled to a VGVA via GRE encapsulation.

Here the network diagram (rif: vgva-layer-2-vpn-configuration-guide ) I'm testing, only difference is I'm using GRE encapsulation instead of IPSec: 

net-diagram

GRE tunnel between AP and VPN Gateway goes UP but AP clients doesn't work. I can see client traffic encapsulated in GRE arriving to VGVA but 
I can't see any client's traffic de-ecapsulated and coming out of the VGVA.

Any suggestion ? Is it possible that NATing GRE encapsulation is not supported ?

Thanks



Sam Pirok's profile image
Sam Pirok
Hi Andrea, thanks for your patience here. I ran this past one of our engineers and in general they'd like it if we could open a case for this, they have a lot of follow up questions and it's just easier if we can keep all of the information in a case. In general, we do support NATing GRE traffic. We NAT GRE traffic for layer 3 roaming by default.