Quote from: tbk49 on July 05, 2026, 08:53:02 PMSince I'm running GRE over IPSec, do I need a GRE rule on WAN
@329 pass log quick on ! re0 inet proto gre all no state label "9dc1eb15-4dd3-44b1-adbc-04385d9f9955"Quote from: Patrick M. Hausen on July 03, 2026, 09:32:09 AMA routing table is commonly referred to as a FIB - a forwarding information base. And people like Perlman did not mangle terminology, they defined it.Give up?
The difference between a router and a switch/bridge is that a router works at layer 3 and a switch/bridge at layer 2. It is not necessary to invent separate terms for the act of passing a packet.
I give up.
Quote from: Patrick M. Hausen on Today at 01:01:50 AMThe most common scenario is either to use a policy based IPsec VPN in tunnel mode without a tunnel interface
Quote from: Patrick M. Hausen on July 05, 2026, 09:17:23 PMQuote from: tbk49 on July 05, 2026, 08:45:46 PMI am using tunnel mode, not transport. That a problem?
That entirely depends on what you want to achieve and how the other side is configured.
In tunnel mode as used in most scenarios you would not run an additional GRE tunnel inside the IPsec tunnel. Why are you doing that?