How to create IPSEC tunnel just for remote SSH acesss (on Cisco IOS router)
I have a simple requirement but all guides out there are generally for passing client certain traffic over the tunnel rather than just for SSH access back in to the router.
What I want is to have an IPSEC VPN tunnel between a Cisco IOS router (IR829 with Cellular connection) and my third-party router at head office (Mikrotik) which supports IPSEC (we use for other stuff).
I do not need any outbound traffic from the Cisco router to flow over the VPN, I purely want to use it as a way to access SSH from my head office to the Cisco router.
SSH is configured on the Cisco router and working fine from the LAN.
I have the basic IPSEC commands set up on the Cisco router, but its the routing and which interface to put it on etc.
Re: How to create IPSEC tunnel just for remote SSH acesss (on Cisco IOS router)
First can we verify that you are talking about a simple ipsec site to site vpn, not a Remote Access vpn, or a GRE or VTI tunnel.
If this is the case I believe that what you need to do is to configure an acl for the crypto map that permits SSH traffic, configure a crypto map (and transform set and other needed crypto commands), and apply the crypto map to the outbound interface. This should recognize the SSH traffic and encrypt it over the vpn and pass all other traffic normally.
i have an ip that is part of our internal network, i configured route map on the core to redirect the traffic to the firewall for further inspection.i checked the firewall logs i can see the traffic is redirect to the firewall successfully. i could ping o...
Hi, 1)May I know wht it means when context visibility Status showing 'disconnected" and '(blank)'?Difference between 'disconnected" and '(blank)'. Since both devices also not connected.I found tht these devices are no longer connected to the swi...
Hi ,I would like to configure multiple public ip (same subnet) on outside interface of ASA.I want to use static NAT for specific purpose.For example i have 8 public IP and I want to use 1 is internet ,1 for VPN ,1 for DMZ server and all ip want to a...
Hi all, Is it a way to retrieve the IPS policies from our IPS Appliance or censor? I have tried to look for a way but I am not able to do so. May I knwo any way can retrieve the policies from the Appliance either from the Appliance itself o...
Hello,I configured very easy the SSL in RV345 Vpn router, according this doc: https://www.cisco.com/c/en/us/support/docs/smb/routers/cisco-rv-series-small-business-routers/smb5519-configure-secure-sockets-layer-virtual-private-network-ssl-v.htmlI tri...