remote access vpn

smelvin · ‎03-30-2025

I'm attempting to set up an IPSec tunnel on routers 1 and 3, but I'm losing connectivity and can't figure out where I'm going wrong.

Router1

crypto isakmp policy 10

encr aes

hash sha

authentication pre-share

group 2

lifetime 3600

crypto isakmp key cyber123 address 11.1.1.1

crypto ipsec transform-set TS esp-aes esp-sha-hmac

access-list 101 permit ip 192.168.1.0 0.0.0.255 192.168.3.0 0.0.0.255

crypto map CMap 10 ipsec-isakmp

set peer 11.1.1.2

set transform-set TS

match address 101

exit

in g0/0/1

crypto map CMap

Router3

crypto isakmp policy 10

encr aes

hash sha

authentication pre-share

group 2

lifetime 3600

crypto isakmp key cyber123 address 12.1.1.1

crypto ipsec transform-set TS esp-aes esp-sha-hmac

access-list 101 permit ip 192.168.3.0 0.0.0.255 192.168.1.0 0.0.0.255

crypto map CMap 10 ipsec-isakmp

set peer 12.1.1.2

set transform-set TS

match address 101

exit

in g0/0/0

crypto map CMap

balaji.bandi · ‎03-30-2025

set peers to be peer IP not the Router 2 IP address.

Router1

set peer 12.1.1.1

crypto isakmp key cyber123 address 12.1.1.1

Router3

set peer 11.1.1.1

crypto isakmp key cyber123 address 11.1.1.1

still issue run debug :

#debug crypto isakmp

follow below guide :

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help