Yes, Search for "GRE Multipoint" then look for the second "IP Configuration"
result - within that document "gre multipoint configuration" - This may or
may not work for you- But it is an interesting solution.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=32207&t=32057
PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
the-other-jason
Sent: Wednesday, January 16, 2002 6:37 AM
To: [EMAIL PROTECTED]
Subject: Re: tunneling with previously undefined endpoint? [7:32057]
Unless the pix is really cheap, this might be a tough sell. We could do
it fairly cheaply already
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
the-other-jason
Sent: Wednesday, January 16, 2002 4:37 AM
To: [EMAIL PROTECTED]
Subject: Re: tunneling with previously undefined endpoint? [7:32057]
Unless the pix is really cheap, this might be a tough sell. We could
1. Thanks for the GRE tunnel with keys suggestion, but can you configure
this without specifying the remote endpoint?
Any idea where I could find this on CCO ... the logical interface
configuration guide seems to say that the endpoints _must_ be specified
and that keys just provide weak protec
Unless the pix is really cheap, this might be a tough sell. We could do
it fairly cheaply already -- a 1720 at work with (free) Cisco vpn
clients to take home. But then they start saying at work, well, we need
a spare, and of course there is maintenance .
the problem, frankly, is that thi
ributor last week, until Mid to late February. :(
Mark Odette II
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
the-other-jason
Sent: Tuesday, January 15, 2002 2:57 PM
To: [EMAIL PROTECTED]
Subject: tunneling with previously undefined endpoint? [7:320
If by dynamic, you mean GRE multipoint tunneling (with keys) You got it!!
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=32125&t=32057
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report
Wouldnt ipsec wallop a 2500 cpu??
Brian "Sonic" Whalen
Success = Preparation + Opportunity
On Tue, 15 Jan 2002, the-other-jason wrote:
> Henry -
>
> Absolutely right, the "dynamic" keyword for crypto maps solves the
> problem, but our Cisco SE and quite a few others at work are quite sure
> th
Henry -
Absolutely right, the "dynamic" keyword for crypto maps solves the
problem, but our Cisco SE and quite a few others at work are quite sure
that we can't run IPSec on a 2500. I thought the 2500s could be used
just to provide cleartext encapsulation (to keep the vpn appliances
happy) ..
If I get this correctly you can use dynamic-map feature
as seen in the example here:
http://www.cisco.com/warp/customer/707/ios_804.html
""the-other-jason"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Help, I can't think of a way to do this . :-(
>
> We have two IPSec "a
Help, I can't think of a way to do this . :-(
We have two IPSec "appliances" at work that require known, routable
addresses on their "non-secure" ethernet interfaces.
We want to create a kit engineers can take home for remote IPSec access
into the network from personal cable/dsl connection
11 matches
Mail list logo
