pix multiple ipsec tunels dynamic ip address

Discussion in 'Cisco' started by no, Apr 1, 2005.

  1. no

    no Guest

    If I want to have several simultanious ipsec tunnels with remote non cisco
    routers with dynamic IP addresses, can I configure PIX using dynamic map?
    How PIX will know wich subnet is behind wich peer?

    thanks!
     
    no, Apr 1, 2005
    #1

    1. Advertisements

  2. no

    mcaissie Guest

    Yes you can.

    In a dynamic map you can still create an entry per tunnel an specify
    parameters
    such as the match address

    no] crypto dynamic-map dynamic-map-name dynamic-seq-num match address
    acl_name

    To only problem is that only the remote site will be able to initiate the
    tunnel. But depending on your needs it may not be a problem.
     
    mcaissie, Apr 1, 2005
    #2

    1. Advertisements

  3. no

    no Guest

    I hope it will work, next week I will get additional equipement and try
    with several tunnels. But I still do not understand how PIX will know wich
    IP subnet is behind which peer. Peers are routers with wan interface to
    provider (dynamic addresses), and eth to network with devices that need
    secure communication to central site

    thanks
     
    no, Apr 2, 2005
    #3

    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.
Similar Threads

  1. VPN to PIX with dynamic address

  2. Does Pix or cisco router support dynamic-to-dynamic IPSec VPN?

  3. Route traffic from a Dynamic WAN address on Pix 501

  4. Multiple Dynamic Peers in IPSec VPN

  5. IPsec within L2TP over IPsec - PIX.

  6. PIX/FWSM: allow inbound connections to dynamic NAT address?

  7. VPN between peers with dynamic IP address and dynamic DNS

  8. ipsec when one site has dynamic ip address

Loading...