Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
442
Views
0
Helpful
2
Replies

L2L VPN between Router with VRF and ASA

jain.nitin
Level 3
Level 3

‎06-20-2014 08:09 AM

Hi All,

Can some body help me in configuring my router for L2L vpn on a cisco router vrf with ASA on remote site. Attached is the my router configuration can somebody help me to build the configuration on router and ASA. Router is configured with VRF called DMVPN and its running DMVPN and RA VPN already. Now would like to add L2L vpn in same vrf.

 

It will be a great help.

 

Thanks

 

Labels:
Preview file
20 KB
0 Helpful
2 Replies 2

nkarthikeyan
Level 7
Level 7

‎06-20-2014 09:43 AM

Hi Jain,

 

Sample configuration template would be like this. You can make use of this and do with your changes for your requirement.

 

crypto isakmp policy 10
encryption aes 256
authentication pre-share
group 2
!
ip access-list extended L2LVPN permit ip <Source> <Destination>
crypto ipsec transform-set VPN-TRANS esp-aes esp-sha-hmac
!
crypto keyring <Name> vrf <vrf Name>
pre-shared-key address <peer> key <pass phrase>
!
crypto map <name> 10 ipsec-isakmp
set peer <peer adddress>
set transform-set VPN-TRANS
set pfs group2
match address L2LVPN
!
Apply the crypto map in to the required interface say
interface fas x/x
crypto map <name>

 

HTH

 

Regards

Karthik

0 Helpful

rizwanr74
Level 7
Level 7

‎06-23-2014 01:06 PM

Hi Jain,

 

Please follow this link, below it has all the configuration steps you need.

 

http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_ikevpn/configuration/xe-3s/asr1000/sec-ike-for-ipsec-vpns-xe-3s-asr1000-book/sec-vrf-aware-ipsec.html#GUID-2396F435-5D6B-45D3-8CD0-93AAF6653FF5

 

 


Thanks

0 Helpful
Customers Also Viewed These Support Documents