cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
328
Views
0
Helpful
1
Replies

L2L with static, L2L with dynamic and VPN clients on a Cisco 871

hartwig.kempf
Level 1
Level 1

Hi,

I'm trying to configure three different VPN scenarios at the same on a Cisco 871.

The first one is a VPN between two 871 with static IPs.

The second one is a VPN between one of these 871 and a non Cisco VPN-Router with dynamic IP.

The third scenario are mobile clients connecting via Cisco VPN Client software and also with dynamic IPs.

Each configuration as standalone is no problem, I also managed the VPN between the two 871 and connection to the VPN clients.

Configuring the tunnels between the two 871 and to the non Cisco router works also, but then the VPN clients will fail (because of the dyn. IPs).

So, I started to work with a keyring for the dynamic L2L connection.

This works so far (got a little problem with AAA for the clients, but seem to be an other problem), but I cannot add the static L2L tunnel successfully.

Can you give me some help, how to configure these scenarios, as the order of the configuration will be important?

Thanks a lot!

1 Reply 1

5220
Level 4
Level 4

Hi,

The below link is exacly what you are looking for:

http://cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080094685.shtml

If you look on the router with remote access and L2L, you will notice the "no-xauth" keyword, this is to specify that the peer is a L2L, not a remote client:

crypto isakmp key xxx address 172.x.x.199 no-xauth

If this helps, please rate.

Regards,

Daniel

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: