GRE over IP VPN Tunnel in Packet Tracer

GRE VPN Tunnel Overview

In this Packet Tracer 6.1 activity you configure a Generic Routing Encapsulation (GRE) over IP VPN tunnel. VPN tunnels are now part of the CCNA certification exam. VPN tunnels allow geographically separate private local area networks to be connected to each other across public wide area networks. In this way, a company or organization can have separate office networks virtually connected to each other across the public internet. Private local area networks connected by a tunnel across the internet have complete transparency to each other and are able to take advantage of all local area network resources as if they were locally available. In VPN Tunnels private networks are able to communicate across the public internet because all private network addressing and header information is not visible to public internet routers. The routers on the public internet do not have knowledge of the the private networks communicating across the internet. Unlike IPSec or OpenVPN tunnels, a GRE tunnel does not provide security or encryption by itself and therefore would not be a recommended method of creating a VPN tunnel across the internet if security or privacy is an important concern.


In this Packet Tracer 6.1 activity you do not need to configure R2, and the PCs. R1 and R3 have G0/0, G0/1, and default routes already configured

1. Create a GRE VPN tunnel from the R1 LAN to the R3 LAN
2. Configure Tunnel0
3. Use static routes on R1 and R3 (next hop address) to route traffic across tunnel0
4. You are successful when you can ping from PC-A to PC-C and vide versa


 Note: This Packet Tracer activity requires Packet Tracer version 6.1 minimum.

Video Walkthrough Tutorial


CLI Command Examples

R1(config)# int tunnel 0
R1(config-if)# ip address
R1(config-if)# tunnel source g0/1
R1(config-if)# tunnel destination
R1(config-if)# tunnel mode gre ip
R1(config-if)# exit
R1(config)# ip route

R3(config)# int tunnel 0
R3(config-if)# ip address
R3(config-if)# tunnel source g0/1
R3(config-if)# tunnel destination
R3(config-if)# tunnel mode gre ip
R3(config-if)# exit
R3(config)# ip route

Author: Dan

Dan teaches computer networking and security classes at Central Oregon Community College.

1 thought on “GRE over IP VPN Tunnel in Packet Tracer”

  1. Hi Dan

    I really like your videos, they are clear and you make the ccna more easy, but I have a comment which is can you create videos about troubleshooting NAT, PAT, DHCP, Access List, and some other topics.

    Thank you

Leave a Reply

Your email address will not be published. Required fields are marked *