02-14-2006 11:56 PM - edited 02-21-2020 02:15 PM
Is it possible for the PIX to handle L2TP, Cisco VPN Client, and Site2Site IPSec configurations all with pre-shared keys? If so, where might I find a config example.
We currently have a home to branch office site2site IPSec tunnel, along with Cisco IPSec VPN Clients setup. I'd like to add the ablity for clients to connect with a pre-shared key via L2TP (e.g. via a mobile device such as WM5).
Thoughts? Suggestions?
02-15-2006 12:15 AM
Jeff,
Does the follwing link help....
Also, here's a very good document from Zander Networks on how to setup L2TP on Cisco PIX.
http://www.zandernetworks.co.uk/technotes/Tech%20Note%2004.pdf
Please remeber to rate post if it helps,
02-18-2006 01:16 PM
I actually already have a copy of the docs above.
After further thought, this has more to do with whether a single transform set can handle tunnel and transport mode.
Or rather, how does one setup transport mode for L2TP, when Cisco VPN Clients and Site2Site VPNs terminate on the same interface.
02-22-2006 08:06 AM
I figured it out. Multiple transform sets with the dynamic-map command.
crypto dynamic-map dynmap 40 set transform-set [trans#1] [trans#2]
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: