Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
272
Views
0
Helpful
2
Replies

XOT over IPSec tunnel

lauraherr
Level 1
Level 1

‎03-11-2016 06:15 AM - edited ‎03-08-2019 04:55 AM

Hi,

I need to configure a Cisco1941sec/K9 as XOT device and as well this router will create the IPSec tunnel to transport the XOT traffic over a VPN tunnel.

I've been checking different posts and it's not very clear if the router can have both roles, XOT and IPSec endpoint... Has anybody tried it?, is it feasible?

Thanks in advance!

Labels:
0 Helpful
2 Replies 2

Peter Paluch
Cisco Employee
Cisco Employee

‎03-12-2016 01:43 PM

Laura,

I have not set up this personally, but from looking at available documentation, I do not see any reason why this should not work.

A XOT tunnel is set up using x25 route x25-address xot ip-address xot-source local-interface commands. If the resulting TCP session sourced from local-interface and destined to ip-address, TCP destination port 1998 is then handled by an IPsec crypto map or flows through a Tunnel interface with crypto profile applied, it will be IPsec-protected. Should be fairly straightforward.

Best regards,
Peter

0 Helpful

lauraherr
Level 1
Level 1
In response to Peter Paluch

‎03-21-2016 09:02 AM

Hi, Yes, I had the same idea, that it should work, but then I tripped over with the following post where said "Not sure if the XOT router can also be the IPSec endpoint," https://supportforums.cisco.com/discussion/9323671/encrypting-xot-using-ipsec Just to be sure if there was any constraint or limitation. Thanks!
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card