Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hey everyone,unfortunately one of our switches died and is stuck with "BOOT FAIL T". On reboot it tries to POST, after four cycles of "Initializing Hardware..." and "Initializing Hardware......" it just loops the "BOOT FAIL T" message ad inifinitum.S...
Hello,I am trying to get a basic IKEv2 / IPSec tunnel between two C8200 routers up and running. One is "directly accessible" from the Internet, the other is behind an LTE router that does its own NATing.In theory I would assume the tunnel setup to be...
So far I have the tunnel working with the authorization group and amended the TUNNEL-ACL on both sides.One last question, the tunnel IPs (the ones borrowed from the loopback interfaces) are currently in the same subnet. Is this required in this case?...
Tunnel is back up:SPOKE:SpoilerSPOKE#sho cryp ike sa det
IPv4 Crypto IKEv2 SA
Tunnel-id Local Remote fvrf/ivrf Status
1 <SPOKE-WAN-IP>/4500 <HUB-WAN-IP>/4500 none/none READY
En...
I messed up the default ikev2 authorization policy, reset it and tunnel gets back up now.<SPOKE-WAN-IP> is the private IP behind the LTE router, Gi0/0/0.<SPOKE-LTE-IP> is the actual WAN IP the LTE router gets.<HUB-WAN-IP> is the actual WAN IP on Gi0/...
