cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
215
Views
0
Helpful
1
Replies

Site-to-Site VPN. need some guidance !

illusion_rox
Level 1
Level 1

hi all, i have a hub connected to 40 spokes using redundant links to each spoke. ( 2 links, 1 primary and 1 backup ). we are running ospf in our environment. now the links are combination of DSL, RAdio, Wimax, Dxx,. I would like to simplify my isakmp configuration by not using WAN IP of each spoke in isakmp preshared statement since it will be a lot of overhead, what i want is to refer to some GLOBAL ip ( like an ip on the LAN interface of HUB which is 10.1.1.61 ) to make isakmp connections to, in that way all the spokes will be using this statement

crypto isakmp key cisco address 10.1.1.61

This ip is reachable by OSPF. So is it possible ?? if yes then how i have to define my access-list which needs to protect all traffic between each branchs lan to other branch's lan like from 10.1.2.0 to 10.1.3.0 )

Thanks

1 Reply 1

owillins
Level 6
Level 6
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: