We are currently using the GRE Tunneling that comes with the routers to several subnets, because it is so incredibly fast and easy to set up. We would like to move to IPSEC and throw in some encryption, but I cannot find any configuration samples for multiple sites that connect to a single router(i.e. HQ and multiple Branch Office scenerio).
I think I need a seperate Crypto Map for each tunnel, but can I use the same isakmp policy / transform-set / ?
We have Cisco 1700 Series Modular routers, with IOS12.2
What you can do is use the same crypto map name but with a different sequence number. (e.g.) Crypto map vpnmap 10, crypto map vpnmap 20, cyrpto map vpnmap 30, etc. This way you apply the crypto map to the outside interface and customize each peer with your preferred IPSEC parameters
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...