08-10-2006 11:55 PM
Hello all,
This may sound like a dumb question. We need to set up a new VPN connection to a customer and they have an IPSEC capable router with only 1 network interface. It has a private IP, the router is placed in a DMZ.
Is it possible to terminate a VPN connection on that router ? Or you need 2 network interfaces (one private, one public) ?
Thanks in advance,
Stefan
08-11-2006 05:16 AM
Hi,
You know what i have just tried to assign a crypto map to a subinteface with dotq encapsulation and the router accepted it and enabled ISAKMP on it!
So with another subinterface with another dotq vlan encapsulation i guess you can terminate a vpn connection to the first one and forward decrypted traffic to the second.
I will try this later and i will post results as soon as i've done it (if it work of caurse)
08-11-2006 07:25 AM
Interesting. Please, post results with some configuration examples, when you have them ;)
Thanks,
Stefan
08-11-2006 05:51 PM
08-13-2006 10:52 PM
That's an excellent explanation, thanks a lot.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide