iipsec vpn between cisco routers, using dsl modem(NAT ROUTER)
Hi,
I have two office and both office have broadband connection. I would like to know how to connect these sites using (ipsec vpn ) cisco routers through dsl modem connection.Both offices have static IP. I have lab experience in configuring site to site ipsec VPN. Now I am confused about applying 'crypto map' in interface. What type of modem should I need to use? What are the configuration steps I needed?
My existing connection topology is modem terminate the dsl connection and it also work as Nat router. Should I need to replace modem ?, Which cisco series routers can I use for SOHO?
Please help me....
Software/Hardware used:
Software/Hardware used:
ASKED:
May 21, 2009 6:50 PM
UPDATED:
May 22, 2009 1:43 AM
Answer Wiki:
I would make sure that the dsl modem is configured to pass all protocols, and is not trying to do the VPN itself, that is a common reason for problems. If it still does the nat, that is OK, but also make sure that the nat translates the 'real' fixed IP address and forwards that to the 'private' ip address of the cisco router.
Then you just do the config for the VPN like you did in the lab, and apply it to the ethernet interface that goes to the dsl modem. The address in the crypto config needs to be the 'real' ip address of the other router. Apply it to the interface with the command 'crypto map {name}' where {name} is what you called the crypto map, and do this under the interface config.
If you need a more detailed config, let me know and I will try to post it as soon as I can.
To see all answers submitted to the Answer Wiki: View Answer History.
I think BlankReq’s answer is going to be exactly what you need to get yourself working. If on the remote chance your modem will not let you pass the external IP through, the 82X series Cisco routers will terminate XDSL.
Good luck.