[c-nsp] IP sec tunnel , two IPs same interface
Adam Greene
maillist at webjogger.net
Fri Aug 19 09:00:16 EDT 2005
Ashe,
Is creating subinterfaces on the external port utilizing different VLANs an
option for you? You'd need to run dot1q trunking with the device on the
other end...
--A
----- Original Message -----
From: "Ashe Canvar" <acanvar at gmail.com>
To: <cisco-nsp at puck.nether.net>
Sent: Friday, August 19, 2005 1:42 AM
Subject: [c-nsp] IP sec tunnel , two IPs same interface
> Hi all,
>
> I need to terminate an GRE/IPsec tunnel on a router with only 2
> ethernet interfaces. The inside interface has rfc1918 address and the
> external interface has a routable IP. The problem is that I want to
> add a second IP to this interface to terminate a different tunnel
> (this IP is from a different ISP).
>
> I have tried doing a secondary IP on the same interface but this does
> not work. "sho cry isakamp sa" always shows the connection attempt
> being made from the primary ip.
>
> Any way around this ? Can i make two sub interfaces be in th same vlan
> and terminate the VPN on these instead of using the secondary ips ?
>
> Thanks!
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> ---
> [This e-mail was scanned for viruses by Webjogger's AntiVirus Protection
System]
>
>
---
[This e-mail was scanned for viruses by Webjogger's AntiVirus Protection System]
More information about the cisco-nsp
mailing list