[c-nsp] IP sec tunnel , two IPs same interface
luan nguyen
luan.nguyen at mci.com
Fri Aug 19 12:44:34 EDT 2005
I would create a loopback with the 2nd IP address and use tunnel
profile. Since you don't have to put the crypto map on the physical
interface with tunnel protection profile, I think that will work
-luan
At 01:42 AM 8/19/2005, Ashe Canvar wrote:
>Hi all,
>
>I need to terminate an GRE/IPsec tunnel on a router with only 2
>ethernet interfaces. The inside interface has rfc1918 address and the
>external interface has a routable IP. The problem is that I want to
>add a second IP to this interface to terminate a different tunnel
>(this IP is from a different ISP).
>
>I have tried doing a secondary IP on the same interface but this does
>not work. "sho cry isakamp sa" always shows the connection attempt
>being made from the primary ip.
>
>Any way around this ? Can i make two sub interfaces be in th same vlan
> and terminate the VPN on these instead of using the secondary ips ?
>
>Thanks!
>
>_______________________________________________
>cisco-nsp mailing list cisco-nsp at puck.nether.net
>https://puck.nether.net/mailman/listinfo/cisco-nsp
>archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list