05-14-2012 02:57 AM
Hi
On my router is is possible to create multiple site to site tunnels to different destinations ? i gather you jsut create multiple cryptomaps and assign them to the outside interface ?
cheers
Solved! Go to Solution.
05-14-2012 04:42 AM
Too many tunnel interfaces? A Cisco router should be able to handle that. How many spokes are involved?
Design wise you can proceed via many ways:
A) HUB does not need to initiate connections:
==================================
1- Leverage a tunnel type mgre [ on the hub] aka DMVPN. Then we have 1 Multipoint tunnel interface.
2- Use DVTI [ spoke ] / DVTI [ hub ] with EZVPN
3- Use VTI on spokes + DVTI on hub with a routing protocol
B) HUB need to initiate connections:
============================
use Tunnel protection, one tunnel per spoke.
05-14-2012 03:50 AM
I think crypto maps are an easy Method of configuring, if there will be no multicast traffic between the site which would require VTI.
Sent from Cisco Technical Support iPhone App
05-14-2012 04:11 AM
Hello,
Crypto maps are the old way of configuring VPN. It's always a source of problems when ACL are not symmetrically configured.
U should use tunnel protection [ ipec ipv4 or gre ip]. It's wat simplier to configure / maintain.
Olivier.
05-14-2012 04:20 AM
is also prefer the vti, they are easier and support multicast, routing protocols etc
05-14-2012 04:27 AM
just wondering configuring site-to-site tunnels to different destinations, won't it create many tunnels on the router?
05-14-2012 04:42 AM
Too many tunnel interfaces? A Cisco router should be able to handle that. How many spokes are involved?
Design wise you can proceed via many ways:
A) HUB does not need to initiate connections:
==================================
1- Leverage a tunnel type mgre [ on the hub] aka DMVPN. Then we have 1 Multipoint tunnel interface.
2- Use DVTI [ spoke ] / DVTI [ hub ] with EZVPN
3- Use VTI on spokes + DVTI on hub with a routing protocol
B) HUB need to initiate connections:
============================
use Tunnel protection, one tunnel per spoke.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: