Configure your Serial interface to use the Internet address assigned, and establish an RFC1918 Subnet on the Ethernet Interface.
**The reason you have to do this is so that the IPSec engine has a reference **point to distinguish between encrypted and non-encrypted traffic- If I **recall correctly :) I'm sure someone will correct me if I'm wrong. Then, create a NAT pool for the private net to get out to the internet, as well as receive return traffic. The rest should be gravy if you got an idea for configuring your VPN under IOS. Do a search on CCO for Security Tips and Tricks, and that should lend you to the part of sample configs for VPN tunnels. Good luck! Mark Disclaimer: I've not worked with the Avaya products so I can't speak for that part of your situation. Also, I'm not CSS1 certified, and as such- I'm still learning myself, and am obviously not an expert. You may want to open a TAC case for assistance. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Firesox Sent: Thursday, June 27, 2002 9:09 PM To: [EMAIL PROTECTED] Subject: IPSec to the tunnel endpoint withr IP unnumbered interface [7:47622] Folks, I need some help with site to site vpn between 2610 and Avaya VPNet. Avaya VPnet is configured correctly with appropriate SA and tunnel endpoint. I have a router configured as follows. Ethernet Inetrface has the public IP address assigned to it. Serial 0/0 is an Frame interface to the internet and has ip unnumbered from ethernet interface. when I try to create IPSec tunnel using the crypto map command to s0/0 interface, I cannot connect to the remote site. After some debugging, it seems as if the IPSec tunnel is being created because the S0/0 interface has ip unnumbered command. Could someone help me with the solution to this problem? Thanks in advance Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=47642&t=47642 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]