We have an IPSec tunnel required for a client to pass certain types of traffic, but multicast must also be passed.
I stumbled across this from Cisco:
CSCdu87170 o IP multicast traffic cannot be sent over a Generic Routing Encapsulation (GRE) tunnel if IP Security (IPSec) is configured on the tunnel. Other routing protocols may continue to work normally. o Workaround: Remove IP Security (IPSec) configuration from the tunnel or send IP multicast traffic over a different unencrypted tunnel.
I want to confirm is this is the case? If so, is there a way that this can be done? And if not, would the most logical option be to just make a straight GRE tunnel without IPSec and how does one configure Multicast dense-mode over a tunnel.
I believe you just enable "ip multicast-routing" and "ip pim dense- mode" on each relevent interface correct?
I appreciate any thoughts, thanks!