Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

IPSEC tunnel with a router behind the firewall.

Hi ,

I am looking for a config example for an ipsec configuration where the router resides behind the firewall or in a dmz connecting to another private network over the internet.

Could some please help.

3 REPLIES
New Member

Re: IPSEC tunnel with a router behind the firewall.

Basically, all you need is the router configuration, which you can find here: http://www.cisco.com/warp/customer/707/index.shtml#ipsec.

For the firewall, you need something like the following:

access-list 101 permit esp any host

access-list 101 permit isakmp any host

access-group 101 in interface outside

New Member

Re: IPSEC tunnel with a router behind the firewall.

Does the ipsec router need to sit in the DMZ or the Private Internal Network. If it needs to set in the internal network how would the config look. Is there a config example to that regard, still being behind the firewall.

Where do customers normally have their ipsec router placed keeping in mind security ?

New Member

Re: IPSEC tunnel with a router behind the firewall.

Hi, wjulia

I have the same problem of config an IPSec behind firewall or in DMZ. but I cannot access the site you recommanded. Would you be kind enough to E-mail me a sample configuration? Thank you in advance.

Quzhj@sina.com

297
Views
0
Helpful
3
Replies
CreatePlease login to create content