VyOS Encrypted VXLAN Tunneling

Why can’t you use loopback address as GRE source?
I’ve been succesful using LAN interface IP as GRE tunnel source.

When you use WAN IPs, and ipsec tunnel fails for some reason, you’re sending unencrypted GRE packets. Moreover, some are on DHCP , using DDNS + IPSEC, which rules out using WAN ip as GRE source.