I have a site-to-site IPsec tunnel (LAN-LAN) running from site A to site B. The equipment is two cisco 2811 routers. I need to add a site-to-site tunnel from site A to site C and maintain this already existing tunnel. The endpoint , site A, is a T1 attached to a serial interface.
I created a second policy, access-list to describe the traffic the tunnel should pass, peer, pre-share, etc. and bound it to the already existing crypto map. If I "sh crypto session" the second tunnel shows up with the separate access-list for the interesting traffic, but it indicates that the tunnel in down. Any idea what Im missing or is this not possible? Logically it would seem to be possible.