09-01-2009 11:29 AM - edited 03-04-2019 05:54 AM
I have a Cisco 2650XM and a Multitech 820 and I am wondering if any one has any experience getting a VPN up between the two types of routers? Attached is the IPSec setup screen for a multitech.
Any Ideas?
09-03-2009 06:02 AM
Hello Chad,
this is possible if the C2650XM IOS image supports IPSec.
post a sh ver | inc image
important note:
pfs to be noted can have performance impact.
see an example similar here:
Hope to help
Giuseppe
09-03-2009 07:32 AM
The version I have does support IPSec because I have a VPN up between two cisco routers with this version: flash:c2600-jk9s-mz.123-17c.bin
What is the pfs?
Thanks so far
09-03-2009 08:36 PM
Hello Chad,
pfs = perfect forward secrecy improves encryption
follow Pompey's suggestions starting as simple as possible is the best approach.
Hope to help
Giuseppe
09-03-2009 07:31 PM
Where exactly is it failing? Are you getting passed phase 1?
When i run into trouble with VPN's I like to dial down the enc/hash level. I also like to remove any superfluous stuff. Try establishing a 3DES/MD5 SA using a basic key (cisco12345) default timers and no PFS. Don't use FQDN's either until your sure you can establish the SA using just the IP.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide