December 2, 2008 02:03am pst

1. lrmoore 123,490
2. batry_boy 70,960
3. RobWill 37,550
4. dpk_wal 32,425
5. arnold 25,175
6. Voltz-dk 16,420
7. ebjers 16,130
8. rsivanandan 14,175
9. mkielar 12,500
10. harbor235 12,000
11. JFrederic... 11,800
12. MrHusy 11,000
13. Cyclops3... 10,900
14. _jesper_ 9,575
15. SteveH_UK 9,000
15. bkepford 9,000
17. mwecom... 7,985
18. trinak96 7,865
19. PeteLong 7,475
20. Qlemo 6,840
21. AugustTen 6,500
22. SysExpert 6,000
22. Jay_Gridley 6,000
22. decoleur 6,000
25. wilsj 5,600

1. lrmoore 382,832
2. RobWill 192,774
3. batry_boy 117,335
4. richrumble 111,117
5. rsivanandan 59,892
6. ahoffmann 44,523
7. dpk_wal 42,425
8. arnold 38,435
9. Cyclops3... 35,775
10. grblades 35,012
11. pseudocy... 34,059
12. harbor235 30,398
13. tim_holman 27,445
14. kbbcnet 26,524
15. ebjers 25,140
16. decoleur 25,014
17. Tolomir 23,651
18. sciwriter 23,050
19. Voltz-dk 23,020
20. keith_ala... 22,600
21. giltjr 22,145
22. calvinetter 20,950
23. PowerIT 20,560
24. chris_cal... 19,770
25. PeteLong 19,155

06.02.2008 at 11:44AM PDT, ID: 23450877

	[x] Attachment Details

[x]

The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

The Grade of the Solution
The Zone Rank of the Expert Providing the Solution
The Number of Author and Expert Comments
The Number of Experts Contributing
The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!

6.4

Setup IPsec to single router with end point having muliple DSL links

Asked by Melaleuca in IPSec Security Protocol, Virtual Private Networking (VPN), Cisco PIX Firewall

Tags: Cisco, Router, 2841, VPN IPsec

Is there a way to setup a ipsec vpn to a router that has a single internet connection from a router that has multiple internet connections. Basically we have a remote site and have two dsl lines from different providers and these terminate to a data center router. I know that both connections are able to do crypto because if i remove the other crypto line for the redundant vpn it will come up. Here is my configs.

Main Router ( This router will receive both vpn tunnels. )

crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
!
crypto isakmp key secret address 218.242.222.84
crypto isakmp key secret address 221.133.228.202
!
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
!
crypto map IPSEC 1 ipsec-isakmp
set peer 218.242.222.84
set transform-set ESP-3DES-SHA
match address 107
crypto map IPSEC 2 ipsec-isakmp
set peer 221.133.228.202
set transform-set ESP-3DES-SHA
match address 106
!
int fa0/0
description outside
ip address 211.144.211.154 255.255.255.248
no shut
crypto map IPSEC
!
int fa1/0
description inside
ip address 10.135.0.1 255.255.255.0
!
ip route 0.0.0.0 0.0.0.0 211.144.211.153
!
access-list 106 permit ip 10.135.0.0 0.0.255.255 10.248.3.0 0.0.0.255
access-list 107 permit ip 10.135.0.0 0.0.255.255 10.248.3.0 0.0.0.255

Remote Router ( this router has the two connections one will be for backup )

crypto isakmp key secret address 211.144.211.154
!
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
!
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
!
crypto map IPSEC 1 ipsec-isakmp
description Tunnel to Shangha-IDC
set peer 211.144.211.154
set transform-set ESP-3DES-SHA
match address 100
!
crypto map IPSEC 2 ipsec-isakmp
description Tunnel to Shangha-IDC
set peer 211.144.211.154
set transform-set ESP-3DES-SHA
match address 102
!
int fa0/0
description outside
ip address 218.242.222.84 255.255.255.248
ip nat outside
crypto map IPSEC
int fa1/0
description outside
ip address 221.133.228.202 255.255.255.248
crypto map IPSEC
int fa2/0
description inside
ip address 10.248.3.1 255.255.255.0

ip route 0.0.0.0 0.0.0.0 218.242.222.83
ip route 0.0.0.0 0.0.0.0 221.133.228.201 10

access-list 100 permit ip 10.248.3.0 0.0.0.255 10.135.0.0 0.0.255.255
access-list 102 permit ip 10.248.3.0 0.0.0.255 10.135.0.0 0.0.255.255Start Free Trial

Keywords: Setup IPsec to single router with end p…

	Title
1	Cisco IPSec VPN crashing when chan…
2	Cisco Router and IPSEC Tunnel Configu…
3	IPSec VPN
4	VPN - PIX 506 to Linksys WRVS4…
5	Cisco 871W to ASA5100 ipsec tu…
6	3cr870-95 router dropping IPSEC…

Loading Advertisement...

20080716-EE-VQP-32 / EE_QW_2_20070628

Setup IPsec to single router with end point having muliple DSL links

Asked by Melaleuca in IPSec Security Protocol, Virtual Private Networking (VPN), Cisco PIX Firewall

Tags: Cisco, Router, 2841, VPN IPsec

About this solution