I have the head office and the branch office connected via DSL (thats a Data circuit only , no internet) both sides have private IP on the DSL interface given by the ISP. i applied a preshard key method vpn on them to enable the LAN on both sides to communicate with them.
the head office had dynamic Crypto map and the branch has the peer (head office) configured.
as soon as traffic for 172.16.0.0/20 (the Head office LAN) from the branch (192.168.3.0/24) thecommunication starts..
now a few weeks a go we started to have problem especially when the DSL line unsyncs and syncs back again the communication is lost.. even when traffic for 172.16.0.0 is being generated from 192.168.3.0
can any one take a look at this branch side VPN configuration and let me know what im doing wrong ??
attached is the file with the branch office running config as well as the head office side crypto config ..
i updated this router a bit.. i added ip tcp-adjust-mss 1452 in the vlan1 interface and ip mtu 1592 in the dialer interface.....
the DSL problem now looks to be an ISP side problem cause if i run ping to the DSL inteface from my core router i get a series of 200 successful pings then 30 - 40 time outs then agian 200 successful then again 30 - 40 time outs.. n it keeps going on ... anyone had this kind of error ???
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :