I'm using dial backups to my DSL connections in case of failure but on my host router I also use EZVPN Server for Client VPN access. As a result the the EZVPN Server uses xauth for preshare authentication:
crypto isakmp key ??????? address 0.0.0.0 0.0.0.0
BUT for my dial backup VPN to work I need to use dynamic IP for the peer IP address thus requiring:
crypto isakmp key ?????? address 0.0.0.0 0.0.0.0 no xauth
I've tried configuring keys for the dial-in subnets, but it still seems to use the default.
Is this simply not supported or is there a workaround?
My host (main) router is a CISCO 1841, my remote router is 877.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...