I've got 3 offices linked together with IPSec tunnels running on 2811 Routers.
I need to configure this so that from the two branches, the default route is down the VPN tunnel to the Main site, rather than out to the internet.
I traied configuring the Access-lists for the VPN traffic to be:
ip access list branchA_2_Main
permit ip <branchnetworks> any
ip access list Main_2_BranchA
permit ip any <branchnetworks>
But if I do this the isakmp fails.
We have this working for our remote VPN users who connect to a VPN3005, but the site-site is eluding me...
Can anyone please advise how I can achieve this?