I have a VPN Server setup on an 881 which works wonderful. The client is now asking to have a Site-to-Site added to the 881. When I add this the site-to-site comes up but the VPN server stops responding to VPN Cient request. Config Below...
aaa authentication login default local aaa authentication login sdm_vpn_xauth_ml_1 local aaa authentication login sdm_vpn_xauth_ml_2 local
aaa authentication login ciscocp_vpn_xauth_ml_1 local
interface FastEthernet4 description $ES_WAN$ ip address x.x.x.x
ip nat outside ip virtual-reassembly duplex auto speed auto crypto map SDM_CMAP_1
ip local pool SDM_POOL_1 220.127.116.11 18.104.22.168 ip forward-protocol nd ip route 0.0.0.0 0.0.0.0 x.x.x.x
ip http server ip http authentication local ip http secure-server ip http timeout-policy idle 60 life 86400 requests 10000
access-list 100 remark CCP_ACL Category=2 access-list 100 remark IPSec Rule access-list 100 deny ip 192.168.168.0 0.0.0.255 22.214.171.124 0.0.0.255 access-list 100 remark IPSec Rule access-list 100 deny ip 126.96.36.199 0.0.0.255 192.168.168.0 0.0.0.255 access-list 100 deny ip any host 188.8.131.52 access-list 100 deny ip any host 184.108.40.206 access-list 100 deny ip any host 220.127.116.11 access-list 100 deny ip any host 18.104.22.168 access-list 100 deny ip any host 22.214.171.124 access-list 100 deny ip any host 126.96.36.199 access-list 100 deny ip any host 188.8.131.52 access-list 100 deny ip any host 184.108.40.206 access-list 100 deny ip any host 220.127.116.11
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...