Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

L2L VPN between Router with VRF and ASA

Hi All,

Can some body help me in configuring my router for L2L vpn on a cisco router vrf with ASA on remote site. Attached is the my router configuration can somebody help me to build the configuration on router and ASA. Router is configured with VRF called DMVPN and its running DMVPN and RA VPN already. Now would like to add L2L vpn in same vrf.

 

It will be a great help.

 

Thanks

 

2 REPLIES

Hi Jain, Sample configuration

Hi Jain,

 

Sample configuration template would be like this. You can make use of this and do with your changes for your requirement.

 

crypto isakmp policy 10
encryption aes 256
authentication pre-share
group 2
!
ip access-list extended L2LVPN permit ip <Source> <Destination>
crypto ipsec transform-set VPN-TRANS esp-aes esp-sha-hmac
!
crypto keyring <Name> vrf <vrf Name>
pre-shared-key address <peer> key <pass phrase>
!
crypto map <name> 10 ipsec-isakmp
set peer <peer adddress>
set transform-set VPN-TRANS
set pfs group2
match address L2LVPN
!
Apply the crypto map in to the required interface say
interface fas x/x
crypto map <name>

 

HTH

 

Regards

Karthik

Hi Jain, Please follow this

Hi Jain,

 

Please follow this link, below it has all the configuration steps you need.

 

http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_ikevpn/configuration/xe-3s/asr1000/sec-ike-for-ipsec-vpns-xe-3s-asr1000-book/sec-vrf-aware-ipsec.html#GUID-2396F435-5D6B-45D3-8CD0-93AAF6653FF5

 

 


Thanks

46
Views
0
Helpful
2
Replies