Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
929
Views
0
Helpful
2
Replies

IPSec of UDP using IOS Router

a-greaves
Level 1
Level 1

‎03-15-2004 01:44 AM - edited ‎02-21-2020 01:04 PM

I've got a 1712 Router using VPN Feature set, connecting to 3000 series Concentrator, via the Internet.

The Concentrator is hidden behind a PIX Firewall. The Firewall has a public NAT address for the Concentrator. I understand I need to use IPSec over UDP in order for the IPSec tunnel to establish.

What I need to know is:

1. What are the CLI commands for the Router to put IPSec over UDP.

2. Will the UDP us port 10000

3. What boxes need selecting on the Concentrator LAN-to-LAN setup.

regards

Labels:
0 Helpful
2 Replies 2

m.rainer
Level 1
Level 1

‎03-15-2004 05:58 AM

Hi,

In my opinion UDP Tunneling for IPSec works for client ipsec only and does not work for L2L IPsec. Is that correct.

Thanks Markus

0 Helpful

a-greaves
Level 1
Level 1
In response to m.rainer

‎03-15-2004 06:15 AM

Hi,

I've done some further checking. For the Router there's a command 'crypto ipsec nat-transparency udp-encapsulation'. The command gets accepted, but doesn't appear in the config.

I'm thinking it might be an IOS bug.

image is c1700-k9osy7-mz.122-15.ZL1.bin

0 Helpful
Customers Also Viewed These Support Documents