SDM 2.5 Easy VPN - "Unnumbered to new loopback interface"

Unanswered Question
Jul 27th, 2009
User Badges:

I guess I've never seen this option before today. Prior you simply selected your external interface for configuring Easy VPN. However, now it states "A virtual template interface must be unnumbered to a router interface to obtain an IP address."

This is really throwing me for a loop [no pun intended]. Why do you have set a loopback interface for remote access VPN? I've done this before from the CLI. First the ISAKMP policy. Then the ISAKMP Client Config. Then the transform set. Next the dynamic-map. Then the user accounts and aaa authentication/authorization setting.

I'm just not understanding how a VTI plays into it? Does it have to be in the same subnet as your ip pool? I've read my ISCW book and looked online and I'm really not understanding what to configure, how to configure it, and esp. why to configure "an unnumbered virtual template interface to a router interface to obtain an IP address."

Help me oh mighty cisco godlings

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion