Site-to-Site VPN. need some guidance !

Unanswered Question
May 22nd, 2008
User Badges:

hi all, i have a hub connected to 40 spokes using redundant links to each spoke. ( 2 links, 1 primary and 1 backup ). we are running ospf in our environment. now the links are combination of DSL, RAdio, Wimax, Dxx,. I would like to simplify my isakmp configuration by not using WAN IP of each spoke in isakmp preshared statement since it will be a lot of overhead, what i want is to refer to some GLOBAL ip ( like an ip on the LAN interface of HUB which is ) to make isakmp connections to, in that way all the spokes will be using this statement

crypto isakmp key cisco address

This ip is reachable by OSPF. So is it possible ?? if yes then how i have to define my access-list which needs to protect all traffic between each branchs lan to other branch's lan like from to )


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion