Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
355
Views
0
Helpful
1
Replies

Use different Ipsec protocol for different Traffic

wongsusanto
Level 1
Level 1

‎06-10-2002 04:57 PM - edited ‎02-21-2020 11:47 AM

Hi All,

How can I apply using different Ipsec protocol for different traffics, Say I want to use ESP for http and and AH for ftp, Is there a sample configuration in cisco website ?

thanks for your help..

Regards

Labels:
0 Helpful
1 Reply 1

vijkrish
Cisco Employee
Cisco Employee

‎06-12-2002 03:07 AM

I don't have a readymade sample, but here is the logic:

ACL 120 is for http traffic

ACL 180 is for ftp traffic

Define 2 ipsec transform sets with name httpset and ftpset (for example),

Define 2 crypto maps with different sequence numbers

Under crypto map httpmap, specify match address 120 and httpset

under crypto map ftpmap, specify match address 180 and ftpset

apply the crypto map to the interface.

hope this helps,

Vijay

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents