l2tp over ipsec connection client and server cisco router

agoodman_1559 · ‎10-17-2016

Hello

I have 2 cisco 881 routers that are configured using site to site ipsec tunnel.

This scenario needs public IP in both location.

Now I want to add another 881 router but don't have a public IP in the 3rd location.

How can I configure the first router as l2tp over IPsec server router and configure the l2tp user and password on the second router so I will have L2tp vpn connection from lan A to lan B through internet and will use only one public ip on the server router?

Thanks for your help.

Georg Pauwen · ‎10-17-2016

Hello,

so basically you have three locations and only two public IP addresses ?

agoodman_1559 · ‎10-17-2016

The 2 other locations are connected using site to site IPsec connection. What I need exactly is to make an lt2p connection over ipsec between Lan A and Lan B with only one public ip address at Lan A. Thanks for your help.

Peter Koltl · ‎10-19-2016

You can do that with Easy VPN or plain site-to-site VPN where the third site is added as dynamic peer to 2nd. You don't need L2TP.

Georg Pauwen · ‎10-19-2016

Peter,

I have been looking at this for quite a while, but couldn;t figure out how the 3rd site peers with any of the other sites, since there is no public IP address for the third site, so what do we use for peering ? Can you give the configuration details ?

Peter Koltl · ‎11-29-2016

http://www.cisco.com/c/en/us/support/docs/security-vpn/ipsec-negotiation-ike-protocols/46242-lan-to-lan-vpn-client.html