cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
732
Views
0
Helpful
2
Replies

LAN to LAN VPN through MPLS

siddhartham
Level 4
Level 4

Capture.JPG

We have 2 sites HQ and Remote connected with MPLS as in the above picture.There are applications in DMZ s that need to talk to each other but the communication is going through the LAN (Remote DMZ- HQ LAN - HQ DMZ) but we don't want the DMZs talk to each other through the LAN.We want to configure a VPN tunnel between HQ and Remote Firewalls so that all the communication between the DMZs go through a VPN tunnel through MPLS through the LAN. Is this considered as a Layer2 VPN or the Layer 3 VPN model and also is there any special configuration that needs to be done on the firewalls other than normal site-site VPN config.

Thanks

Siddhartha
1 Accepted Solution

Accepted Solutions

Jennifer Halim
Cisco Employee
Cisco Employee

It is Layer 3 VPN and no special configuration required on the firewall other than the normal site-to-site VPN. Just have to enable the isakmp and apply crypto map to the LAN interface.

View solution in original post

2 Replies 2

Jennifer Halim
Cisco Employee
Cisco Employee

It is Layer 3 VPN and no special configuration required on the firewall other than the normal site-to-site VPN. Just have to enable the isakmp and apply crypto map to the LAN interface.

Thanks Jennifer.

Siddhartha