Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Using Vritual IP as the IPSec Peer

HI,

I have two routers at location A which are connected to Site B using two leased lines. I need to run IP Sec Between Location A and Location B.

I want to know if i can configure the virtual IP of the HSRP Group pointing towards the LAN of the Location A as my IPSec Peer on the router at Location B.

Request your kind assitance.

Best Regards,

Vamsi Krishna

3 REPLIES
Silver

Re: Using Vritual IP as the IPSec Peer

Use the crypto map redundancy on the outgoing interface in the Location A but ensure u dont encrypt traffic to the HSRP VIP.

New Member

Re: Using Vritual IP as the IPSec Peer

Unfortunately, as i mentioned the HSRP is on the LAN Side and the LAN traffic between location A and Location B need to be encrypeted.

Do u have any document or a link which explains a bit better on the scenario i mentioned.

Waiting your reply.

Thanks.

Silver

Re: Using Vritual IP as the IPSec Peer

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122limit/122y/122ye/1229ye/12yipsec.htm#wp1042341

This is the link. But i dont think you can use the LAN side as the HSRP has to be configured on the interface where crypto is to be applied. What exactly is the scenario you are looking at ? maybe it can be redesigned using DPD and RRI

117
Views
0
Helpful
3
Replies
CreatePlease login to create content