02-09-2010 06:26 PM - edited 02-21-2020 04:29 PM
Anybody using VRF aware IPSec feature to connect third party devices like FortiGate firewall to a Cisco router? I am trying to make this work but haven't been successful in doing so. The references that I have found so far point to the fact that the VRF aware IPSec is a remote access feature that works when using the Cisco IPSec VPN client.
Configuration of the Cisco router is attached.
Thanks,
Gaurav
02-10-2010 10:51 AM
Hi Gaurav,
You need to apply the crypto-map to your WAN interface:
interface FastEthernet4
crypto map ra
!
HTH
Laurent.
02-10-2010 11:01 AM
Hi Laurent,
Thanks for the reply. The configuration on the router has IPSec enabled. It is missing from the configuration that I attached to the post.
Regards,
Gaurav
02-10-2010 11:15 AM
Thanks for the update.
VRF is locally significant to the IPSec Hub so it should work regardless of the remote VPN client.
Here is an example without VRF. You should make it works first like this and then add the VRF-aware feature:
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00801eafcb.shtml
HTH
Laurent.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: