Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
250
Views
0
Helpful
1
Replies

VPN - Pix to Router

keyur-desai
Level 1
Level 1

‎09-04-2002 05:29 AM - edited ‎02-21-2020 12:02 PM

Our site router (1720) overseas has a private address assigned by the local ISP on the serial port. The router ethernet port has registered IP addresses. How do I configure the peer on the PIX side (can't use the serial port on private address), and which interface do I apply the crypto map on the router. Using ISAKMP with pre-shared keys.

Labels:
0 Helpful
1 Reply 1

cjacinto
Cisco Employee
Cisco Employee

‎09-04-2002 09:07 PM

You have to use the public ip address of the router on the ethernet as the ipsec peer on the pix. On the router you could configure as normal and apply the crypto map on the serial interface but add a crypto map local address command on the global to specify that the crypto map would be using the ethernet interface as its ipsec identity.

see:

http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/secur_r/srprt4/sripsec.htm#xtocid1231443

0 Helpful
Customers Also Viewed These Support Documents