cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1077
Views
0
Helpful
3
Replies

VRF Aware IPSec - Third Party Devices as clients

gsabharwal
Level 1
Level 1

Anybody using VRF aware IPSec feature to connect third party devices like FortiGate firewall to a Cisco router? I am trying to make this work but haven't been successful in doing so. The references that I have found so far point to the fact that the VRF aware IPSec is a remote access feature that works when using the Cisco IPSec VPN client.

Configuration of the Cisco router is attached.

Thanks,

Gaurav

3 Replies 3

Laurent Aubert
Cisco Employee
Cisco Employee

Hi Gaurav,

You need to apply the crypto-map to your WAN interface:

interface FastEthernet4

crypto map ra

!

HTH

Laurent.

Hi Laurent,

Thanks for the reply. The configuration on the router has IPSec enabled. It is missing from the configuration that I attached to the post.

Regards,

Gaurav

Thanks for the update.

VRF is locally significant to the IPSec Hub so it should work regardless of the remote VPN client.

Here is an example without VRF. You should make it works first like this and then add the VRF-aware feature:

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00801eafcb.shtml

HTH

Laurent.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: