I have centeral Firewall (PIX535) in HQ peering via IPSEC tunnles with other 3 branches, all branches using Cisco 1700 with IOS feature set currently there is IPSEC tunnel between each branch and HQ FW, i need to configure the centeral FW to doing routing between all branches, so if branch x need to communicate with branch y it should establish it's IPSEC with HQ, then the HQ using the incoming traffic to initiate IPSEC tunnel with y (if idel) then routed the traffic between both branches.
Mainly i need to do Hub-Spoke IPSEC tunnels due to lack of hardware in the remote branches routers.
Just to add a short note to your environment, if you are presently using IPSec Direct Encapsulation (traditional IPSec Tunnels), you may encounter issues with respect to Multicasting Applications like Routing Protocols.
If not deployed already, you should consider migration from IPSec Direct Encap to Point to Point GRE over IPSec Tunnels.
Aleternatively you may consider implementing a DMVPN also which can take care of all the issues.
You may like to refer the following link for additional information:
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.