Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
986
Views
0
Helpful
2
Replies

Using the IPSEC-SPA-2G and PKI for remote access vpn

David Williams
Level 1
Level 1

‎05-10-2010 03:39 PM - edited ‎02-21-2020 04:38 PM

We currently have a couple of IPSEC SPAs that we are using to terminate site to site vpn tunnels in vrf mode.  We are looking at leveraging this hardware to also terminate remote access vpn using PKI to avoid the aggressive mode security issues.  I was hoping there would be some people out there that could point me towards some good resources that will help with the configuration of such a model.  I've found some cisco documents on their website but it seems like the documents I found are trying to cover little bits of everything and leave holes when it comes to this specific deployment.  If anyone has first hand experience they would like to share I would appreciate it.  If you know of some documentation or Cisco Press books that would be of value I am open to that too.

Thanks!

Labels:
0 Helpful
2 Replies 2

darin.marais
Level 4
Level 4

‎11-17-2011 11:25 PM

hello David,

I have seen that there is no reply to this thread.

I was wonding if you managed to come across any good documentation and/or a configuration guide that could explain terminate "site to site ipsec tunnels in vrf - lite mode?

Many thanks in advance

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents