Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2164
Views
0
Helpful
0
Replies

Crypto Map and Static VTI IPsec VPNs on the same router

John Platts
Level 4
Level 4

‎04-16-2010 10:36 AM - edited ‎02-21-2020 04:36 PM

I have been trying to get both crypto maps and IPsec static VTIs configured for VPNs on the same router and terminated on the same interface. I do like the benefits of static VTI's, but I need to be able to deal with situations where crypto maps are needed.

I have read about IKE version 2, which is described here:

http://www.cisco.com/en/US/docs/ios/sec_secure_connectivity/configuration/guide/sec_cfg_ikev2.html

Are there any IOS releases today that have the ability to configure crypto maps and IPsec static VTIs on the same router and terminated on the same interface? I am interested in support for this feature because:

  • I can configure static VTIs to terminate VPNs to IOS-based devices that have the capability (examples: UC520, 851, 871)
  • I can terminate VPNs to devices that do not have static VTI support, such as the SA520 or ASA 5505

I have attempted to configure this feature on a 3825 ISR, but I was not able to get this capability working on the 3825 ISR yet.

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents