Feature #15461
closedSupport GRE Tunnel Key
0%
Description
Hello,
is it possible to implement GRE Tunnel Key according to RFC1701 ( https://datatracker.ietf.org/doc/html/rfc1701 ).
For example, in FortiGate it is implemented as key-inbound and key-outbound option ( https://docs.fortinet.com/document/fortigate/7.4.3/cli-reference/79620/config-system-gre-tunnel ).
Thanks
Updated by Jim Pingle 12 days ago
- Status changed from New to Needs Patch
Support for GRE keys is not complete in FreeBSD at this time. FreeBSD GRE allows configuring an outbound key but not an inbound key.
From the man page :
The current implementation uses the key only for outgoing packets. In-
coming packets with a different key or without a key will be treated as
if they would belong to this interface.
For this to be effective, someone would first need to finish the implementation in FreeBSD.
Updated by David Bojnansky 12 days ago
Ok, in fact I need mainly the outbound key. Can you implement it at least partly for now?
Thanks for the response.
Updated by David Bojnansky 11 days ago
Feature Request sent to FreeBSD: https://forums.freebsd.org/threads/feature-request-gre-tunnel-in-bound-key.93358/