[c-nsp] IPSec VPN client to router, then router to router
Luan M Nguyen
luan at t3technology.com
Fri Jul 18 15:03:50 EDT 2008
I am thinking it's possible. Your client dials in, get IP from a pool on A,
looks at the routing table see the resource through GRE/IPSEC tunnel between
A-B, goes there, then if A advertises the pool network to B, you are set for
the return traffic.
crypto map just have 2 instances...
crypto map Chuck 10 ipsec-isakmp dynamic for dial clients and crypto map
Chuck 20 ipsec-isakmp for GRE/IPSEC tunnel...
It should work right?
-Luan
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Church, Charles
Sent: Friday, July 18, 2008 1:24 PM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] IPSec VPN client to router, then router to router
Anyone,
I'm having trouble getting the following config to work. I'm
not sure if this is possible. I've got 2 878 routers attached to
internet. Router A supports remote clients. Router A has a LAN to LAN
IPSec connection to Router B. B does not support clients. Is it
possible for the client to establish a connection to Router A, then
access resources off of router B via the LAN-LAN tunnel? In other
words, packet comes in client tunnel, then is forwarded back out the
LAN-LAN tunnel off of the same interface to get to router B. Return
traffic takes reverse path, obviously.
Thanks,
Chuck
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list