Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

how to terminate vpn On Subinterface in cisco 2821


How to Terminate vpn using subinterface? This is may current config:

crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
crypto isakmp key x.x.x.x address
crypto ipsec security-association lifetime seconds 14400
crypto ipsec transform-set ESP-3DES-SHA10 esp-3des esp-sha-hmac
crypto map SDM_CMAP_1 1 ipsec-isakmp
description Tunnel to Remote
set peer
set security-association lifetime seconds 3600
set transform-set ESP-3DES-SHA10
match address 111
interface GigabitEthernet0/0
description $ETH-WAN$
no ip address
duplex auto
speed auto
interface GigabitEthernet0/0.10
encapsulation dot1Q 600 native
ip address
ip nat outside
ip virtual-reassembly
crypto map SDM_CMAP_1
interface GigabitEthernet0/0.11
encapsulation dot1Q 650
ip address
interface GigabitEthernet0/0.12
encapsulation dot1Q 700
ip address 333.333.333.333
interface GigabitEthernet0/0.13
encapsulation dot1Q 750
ip address 444.444.444.444
interface GigabitEthernet0/1
description $ETH-LAN$
ip address
ip nat inside
ip virtual-reassembly
duplex auto
speed auto
ip route
ip nat inside source list 105 interface GigabitEthernet0/0.10 overload
access-list 105 deny   ip
access-list 105 permit ip any
access-list 111 permit ip

What i need to do is to use the interface GigabitEthernet0/0.11 as the peer of the remote router and still be able to stablish vpn. Any help please.

Thank you

CreatePlease login to create content