| Home | Forums | Reviews | Guides | Newsgroups | Register | Search |
 |
| Thread Tools |
|
Guest
Posts: n/a
|
|
|
|
||
|
|
| |
|
Guest
Posts: n/a
|
In article <1_bdd.3140125$> ,
B.T. <> wrote: :I have my cisco 800 router configured to allow vpn from Cisco Client VPN :software, so that anyone can connect from a laptop. To allow this I have: : crypto map clientmap :But now, I want to configure it to configure a VPN with other office, with  ther crypto map. How can I do this?, I mean is it right to set two cryto:map for the same interface No, you can only use one crypto map per interface. To be able to connect to multiple sites, use different crypto map policy numbers for the two. crypto map FOO 100 isakmp-ipsec crypto map FOO 100 match-address ... crypto map FOO 100 set peer ... crypto map FOO 150 isakmp-ipsec crypto map FOO 150 match-address ... crypto map FOO 150 set peer ... The policy numbers have no absolute meaning, but the lowest policy number will be evaluated before the first. This makes a difference if your access-list's for your match-address's have overlaps, and makes a difference when you import a crypto dynamic-map into a crypto map [in that you usually do not have an access-list associated with dynamic maps, and the implicit access-list in that case is to match everything as soon as a dynamic peer successfully negotiates.] -- Caution: A subset of the statements in this message may be tautologically true. |
|
|
|
|
|||
|
|
| |
|
| Thread Tools | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| virtual tunnel interfaces / crypto maps | GT | Cisco | 2 | 06-11-2008 08:37 PM |
| PIX VPN: Selecting dynamic crypto maps based on certificate | Pondlife | Cisco | 0 | 04-28-2008 08:50 AM |
| Multiple crypto maps on a 3825 router interface | ttripp@magnoliamanor.com | Cisco | 4 | 02-10-2007 12:39 PM |
| tunnels and crypto maps | Dan Lanciani | Cisco | 0 | 03-20-2006 06:42 AM |
| multiple crypto maps on cisco pix | tical | Cisco | 2 | 12-02-2003 05:56 PM |
