setting up site to site VPN on cisco pix 501
HI
Please can someone advise me on configuring a site to site VPN
We currently have one lan to lan vpn setup between here and usa but i need to setup 3 more.
setup
our head office is in uk and currently have one remote site in the USA but we will have 3 more online shortly, all site will use the vpn to access the Terminal sever.
I can post the config of the cisco pix if it will help ?
can someone please provide a step by step guide for setting up a lan to lan vpn connection on the cisco pix 501.
thanks
Please can someone advise me on configuring a site to site VPN
We currently have one lan to lan vpn setup between here and usa but i need to setup 3 more.
setup
our head office is in uk and currently have one remote site in the USA but we will have 3 more online shortly, all site will use the vpn to access the Terminal sever.
I can post the config of the cisco pix if it will help ?
can someone please provide a step by step guide for setting up a lan to lan vpn connection on the cisco pix 501.
thanks
ASKER
thanks
were do i input the pre shared key?
once i have done that, is that the VPN connection setup or is there more to config. I persmue if that it once the remote site is configured the VPN will auto start.
and then i do excatly same for other sites just changing the new site internet ip and lan ip
thanks for your help, as i said i am very new to cisco. i have setup many vpn but using other GUI products.
were do i input the pre shared key?
once i have done that, is that the VPN connection setup or is there more to config. I persmue if that it once the remote site is configured the VPN will auto start.
and then i do excatly same for other sites just changing the new site internet ip and lan ip
thanks for your help, as i said i am very new to cisco. i have setup many vpn but using other GUI products.
ASKER
hi again
have you got a lise of commands that might be useful in configuring, testing and dianoging issues on pix....
soorry to be a pest ...think i need to go on a course ....
thanks
have you got a lise of commands that might be useful in configuring, testing and dianoging issues on pix....
soorry to be a pest ...think i need to go on a course ....
thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
3 internet addresses and 3 LAN addresses that they will be using.
you would use the command:
UK PIX:
#crypto map outside_map 40 ipsec-isakmp
#crypto map outside_map 40 match address outside_cryptomap_40
#crypto map outside_map 40 set peer x.x.x.x
#crypto map outside_map 40 set transform-set ESP-DES-MD5
#isakmp key x.x.x.xaddress MEXASA netmask 255.255.255.255 no-xauth no-config-mode
#access-list outside_cryptomap_40 permit ip y.y.y.y 255.255.0.0 z.z.z.z 255.255.0.0
#sysopt connection permit-ipsec
Note
x.x.x.x is the new site internet IP
y.y.y.y is the UK LAN IP
z.z.z.z newsite LAN IP
More info check: http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080094761.shtml
hope this helps