L2L encription

Unanswered Question
Jun 12th, 2009
User Badges:

i have two routers connected wtih fiber, not over the internet but think of a gian LAN. Is there any way to do a layer 2 encription between these two routers? or may be just a ipsec tunnel?


Thanks

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
wonderpug Mon, 06/15/2009 - 05:29
User Badges:

Thanks for the help!

What if two routers on the same subnet? Will that works for L2L IPsec? I have done L2L on different subnet but just not sure if this will work on two routers on teh same subnet.

wonderpug Mon, 06/15/2009 - 05:32
User Badges:

interesting, thank you!


Do you have any sample configure for same subnet L2L IPsec?

Collin Clark Mon, 06/15/2009 - 05:41
User Badges:
  • Purple, 4500 points or more

Check the link; instead of a 'cloud', there is a LAN. The router doesn't care about the IP of the destination, just that it can reach it and establish SAs. Follow the example and enter your IP's and it will work. Here's a link that is very helpful in troubleshooting VPNs.


http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807e0aca.shtml

wonderpug Mon, 06/15/2009 - 05:52
User Badges:

Thanks again! I will give a try on two test routers.

wonderpug Mon, 06/15/2009 - 05:35
User Badges:

Thanks for the help!

What if two routers on the same subnet? Will that works for L2L IPsec? I have done L2L on different subnet but just not sure if this will work on two routers on teh same subnet.

auraza Mon, 06/15/2009 - 08:24
User Badges:
  • Cisco Employee,

It would come down to routing at that point.


If each of your routers only know to send the traffic for that subnet across the tunnel, then it will work, however, if both have the same connected subnets, then it won't work, as they know of those subnets locally. In that case you would have to NAT the traffic and encrypt it.

Actions

This Discussion