I am not sure that I understand your first question:
- Does Cisco support Multiple IPSec end points for the same peer?
If you mean does Cisco support configuring two different peer relationships between two routers, then I think that the answer is no. But if you mean (as I suspect that you do) does Cisco support configuration where the IPSec might be received over either of serveral interfaces (or tranmitted over several interfaces) then the anser is yes.
I have configured a good bit of VPN and several have involved VPN on routers with multiple interfaces. The situation can be simpler when there is only one candidate interface - you peer to the interface address and the router will source the VPN packets from the physical interface. But with multiple interfaces the situation gets more complex. Part of the answer is the optional configuration in the crypto map of:
crypto map local-address
In this situation you do not want to peer with the physical interface and it is better to peer with something like a loopback interface. As long as you source from or peer to something like a loopback then the choice of which physical interface no longer has impact.
So let you map specify an address that is not dependent on either of the physical interfaces that may be involved.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...