VPN Ipsec (160 Remode Nodes Connecting to 2 Central Nodes)
I want to connect 160 Cisco Routers 2621 Remode Nodes to my Central nodes that they are 2 Cisco Routers 7206VXR.All routers have 2 Wan serial for redudancy and my 7206VXR are running Hsrp.also I am running a dynamic routing protocol Eigrp.I am wondering which is the best configuration to implement this scenario.I have read about Ipsec Vpn High Availability that i can terminate the Ipsec tunnels to the Hsrp address of 7206, the configuration that i found have as outside interface ethernet interface .Can I do the same if I have outside interface serial interfaces?
Re: VPN Ipsec (160 Remode Nodes Connecting to 2 Central Nodes)
I would probably just configure both peers on each of the remote routers. You can do it simply (two set peer commands) or with two crypto map instances. If you do seperate instances you can load balance the central site routers more effectively.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...