Site-to-Site VPN. need some guidance !

Unanswered Question
May 22nd, 2008

hi all, i have a hub connected to 40 spokes using redundant links to each spoke. ( 2 links, 1 primary and 1 backup ). we are running ospf in our environment. now the links are combination of DSL, RAdio, Wimax, Dxx,. I would like to simplify my isakmp configuration by not using WAN IP of each spoke in isakmp preshared statement since it will be a lot of overhead, what i want is to refer to some GLOBAL ip ( like an ip on the LAN interface of HUB which is 10.1.1.61 ) to make isakmp connections to, in that way all the spokes will be using this statement

crypto isakmp key cisco address 10.1.1.61

This ip is reachable by OSPF. So is it possible ?? if yes then how i have to define my access-list which needs to protect all traffic between each branchs lan to other branch's lan like from 10.1.2.0 to 10.1.3.0 )

Thanks

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion