Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > tunnels and crypto maps

Thread Tools

tunnels and crypto maps

Dan Lanciani
Posts: n/a
The extremely helpful article:

mentions that the long-standing anomaly that required crypto
maps to be applied to tunnel interfaces in addition to the
interfaces through which the encapsulated traffic flows has
been eliminated as of 12.2(13)T. This raises the question:
if you now apply a crypto map to a tunnel interface does it
do what you would expect absent the historical anomaly, i.e.,
encrypt traffic inside the tunnel? In other words, does the
crypto map command applied to a tunnel interface now have the
same semantics as on all other interface?

I suspect the answer to my question is ``no'' since otherwise
most of the complexity of the rest of the DMVPN implementation
would be unnecessary: you could simply use a crypto map with
a wildcard ACL on the tunnel interfaces and not have to worry
about the dynamic external addresses. But I can dream...

Dan Lanciani
Reply With Quote

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Help with understanding Transform Sets and Crypto Maps... (PIX/ASA) Cisco 0 12-04-2008 03:42 PM
Number of IKE Tunnels and IPSec Tunnels philbo30 Cisco 1 04-12-2007 02:16 AM
Tunnels accesing other tunnels on concentrator ljorg Cisco 0 11-22-2006 01:43 PM
several crypto maps for one interface, is it possible? B.T. Cisco 1 10-19-2004 08:00 PM
multiple crypto maps on cisco pix tical Cisco 2 12-02-2003 05:56 PM