vpn tunnels on different interfaces

Unanswered Question
Jun 11th, 2008

do i just configure a new cryptomap and add it to the second interface?

will it interfere with the vpn cryptomap configured on the outside interface?

do i need to create a new nonat acl?

do i then have something like:

nat (inside) 0 access-list InsideNat0

nat (int2) 0 access-list RmtNat0

crypto map outside_map interface outside

crypto map int2_map interface int2

isakmp enable outside

isakmp enable int2

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Farrukh Haroon Thu, 06/12/2008 - 05:24

Yes you can just make two different crypto maps and apply them to the respective interfaces. If both interfaces are 'sourced' from the same interface, then one NAT 0 ACL (with entries/lines covering each VPN's traffic) is enough. It depends on the 'interesting traffic'.




This Discussion