I am setting up a vpn between the above routers. I am using the VTI method with a tunnel interface. I have the tunnel up right now using the default GRE mode. Now I want to use ipsec, I have everything set up but need to turn on ipsec for the tunnel mode. This works on the 3640, however this option isn't listed in the 3660. Here is what I get doing a "tunnel mode ?"
aurp AURP TunnelTalk AppleTalk encapsulation
cayman Cayman TunnelTalk AppleTalk encapsulation
dvmrp DVMRP multicast tunnel
eon EON compatible CLNS tunnel
gre generic route encapsulation protocol
ipip IP over IP encapsulation
iptalk Apple IPTalk encapsulation
ipv6ip IPv6 over IP encapsulation
mpls MPLS encapsulations
nos IP over IP encapsulation (KA9Q/NOS compatible)
The second command I need:
"tunnel protection ipsec profile"
works on both routers, but the tunnel won't come back up because one side is gre and the other is ipsec.
I thought I had the right feature set because I made an ipsec tunnel with a different method (crypto map applied to an interface) on the same router. I actually fixed it with an ios upgrade (new version same features). Maybe I had a buggy IOS? The gre tunnels do work, but I wanted something a little more secure.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...