Configure a logical, point-to-point tunnel to encapsulate a payload protocol.
- Network > GRE Tunnels
First configure a tunnel interface (Network > Interfaces > Tunnel). Then add a generic routing encapsulation (GRE) Tunnel and provide the following information, referencing the tunnel interface you created:
GRE Tunnel Fields
Name of the GRE tunnel.
Select the interface to use as the local GRE tunnel endpoint (source interface), which is an Ethernet interface or subinterface, an Aggregate Ethernet (AE) interface, a loopback interface, or a VLAN interface.
Select the local IP address of the interface to use as the tunnel interface address.
Enter the IP address at the opposite end of the GRE tunnel.
Select the Tunnel interface that you configured. (This interface identifies the tunnel when it is the next hop for routing.)
Enter the TTL for the IP packet encapsulated in the GRE packet (range is 1 to 255; default is 64).
Copy ToS Header
Select to copy the Type of Service (ToS) field from the inner IP header to the outer IP header of the encapsulated packets to preserve the original ToS information.
Select to enable the Keep Alive function for the GRE tunnel (disabled by default). If you enable Keep Alive, by default it takes three unreturned keepalive packets (Retries) at 10-second intervals for the GRE tunnel to go down, and it takes five Hold Timer intervals at 10-second intervals for the GRE tunnel to come back up.
Set the interval between keepalive packets that the local end of the GRE tunnel sends to the tunnel peer, and the interval that each Hold Timer waits after successful keepalive packets before the firewall re-establishes communication with the tunnel peer (range is 1 to 50; default is 10).
Set the number of intervals that keepalive packets are not returned before the firewall considers the tunnel peer to be down (range is 1 to 255; default is 3).
Set the number of intervals that keepalive packets are successful before the firewall re-establishes communication with the tunnel peer (range is 1 to 64; default is 5).
Create a GRE Tunnel
Create a GRE tunnel to connect two endpoints in a point-to-point, logical link. ...
GRE Tunneling Support
The firewall can terminate a GRE tunnel to connect two endpoints in a point-to-point, logical link. ...
Network > GRE Tunnels
Create a GRE tunnel to encapsulate a payload protocol and connect two endpoints in a point-to-point, logical link. ...
Configure Tunnel Content Inspection
Configure Tunnel Content Inspection Perform this task to configure tunnel content inspection for a tunnel protocol that you allow through a tunnel. Create a Security ...
IPSec Tunnel General Tab
IPSec Tunnel General Tab Network > IPSec Tunnels > General Use the following fields to set up an IPSec tunnel. IPSec Tunnel General Settings Description ...
Set Up an IPSec Tunnel
Set Up an IPSec Tunnel The IPSec tunnel configuration allows you to authenticate and/or encrypt the data (IP packet) as it traverses the tunnel. If ...
Building Blocks in a Tunnel Inspection Policy
Building Blocks in a Tunnel Inspection Policy Select Policies Tunnel Inspection to add a Tunnel Inspection policy rule. You can use the firewall to inspect ...