You have to apply crypto map on real interface, otherwise phase I won't kick off in case of crypto acl match. You can configure isakmp identity and peer ip to loopback, provided you use the command crypto map mymap local-address.
-Keyur Shah- CCIE# 4799 (Security; Routing and Switching) CISSP,CCSA,css1,scsa,scna,mct,mcse,cni,mcne Hello Computers "Say Hello to Your Future!" http://www.hellocomputers.com Toll-Free: 1.877.794.3556 -----Original Message----- From: Lidiya White [mailto:[EMAIL PROTECTED]] Sent: Thursday, March 28, 2002 11:37 AM To: [EMAIL PROTECTED] Subject: RE: Crypto Map in Loopback interface [7:39744] Yes, you can apply crypto may on the loopback, tunnel or Ethernet interfaces. Just make sure that routing is setup correctly and use "crypto map mymap local-address lo0". You can create tunnel between loopback interfaces or use on one router loopback interface and on another use physical interface for peers. --- Lidiya White -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of [EMAIL PROTECTED] Sent: Thursday, March 28, 2002 7:43 AM To: [EMAIL PROTECTED] Subject: Crypto Map in Loopback interface [7:39744] Hi All, Can I apply a crypto map to loopback interface or Ethernet Interface...? (Currently the VPN tunnel is working fine with the crypto map applied to Serial interface of the internet edge router) IF yes, can I create a tunnel between loopback interfaces in peers...? Can I create a tunnel between physical interface and the loopback interface....? Thiyagu This e-mail and any files transmitted with it are for the sole use of the intended recipient(s) and may contain confidential and privileged information. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Any unauthorised review, use, disclosure, dissemination, forwarding, printing or copying of this email or any action taken in reliance on this e-mail is strictly prohibited and may be unlawful. Visit us at http://www.cognizant.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=39977&t=39744 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
