Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VRF Aware IPSec - Third Party Devices as clients

Anybody using VRF aware IPSec feature to connect third party devices like FortiGate firewall to a Cisco router? I am trying to make this work but haven't been successful in doing so. The references that I have found so far point to the fact that the VRF aware IPSec is a remote access feature that works when using the Cisco IPSec VPN client.

Configuration of the Cisco router is attached.

Thanks,

Gaurav

3 REPLIES
Cisco Employee

Re: VRF Aware IPSec - Third Party Devices as clients

Hi Gaurav,

You need to apply the crypto-map to your WAN interface:

interface FastEthernet4

crypto map ra

!

HTH

Laurent.

New Member

Re: VRF Aware IPSec - Third Party Devices as clients

Hi Laurent,

Thanks for the reply. The configuration on the router has IPSec enabled. It is missing from the configuration that I attached to the post.

Regards,

Gaurav

Cisco Employee

Re: VRF Aware IPSec - Third Party Devices as clients

Thanks for the update.

VRF is locally significant to the IPSec Hub so it should work regardless of the remote VPN client.

Here is an example without VRF. You should make it works first like this and then add the VRF-aware feature:

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00801eafcb.shtml

HTH

Laurent.

606
Views
0
Helpful
3
Replies