Hi there experts,
We need to setup a VPN tunnel between Cisco Router 1841 and Juniper SSG-320.
Juniper SSG-320 is managed by Verizon (ISP) and will be configured by them so no problems there , we need to configure our end - Cisco 1841 for one of the sites.
Cisco 1841 runs IPSecBundle - (C1841-ADVIPSERVICESK9-M), Version 12.4(9)T5
FE0/0 is local LAN interface
FE0/1 is an interface connected to an ADSL PPPoA modem via static private IP address via one of the four switch ports , ADSL modem gets public WAN IP address dynamically - so it might change.
Based on the info from cisco web site i prepared the config , see below, can you doublecheck and tell me if something is missing or wrong as i'm not a network expert :
Lets assume that remote Juniper IP address is 220.127.116.11 , FE0/1 is assigned 10.2.2.1 , FE0/0 is assigned 10.1.1.1 and that no NAT statements are required as all traffic should be tunnelled including internet traffic:
crypto isakmp policy 1
crypto isakmp key xxxxxx address 18.104.22.168
crypto ipsec transform-set specialset esp-des esp-md5-hmac
crypto map remoteVPN 1 ipsec-isakmp
set peer 22.214.171.124
set transform-set specialset
match address 115
ip address 10.2.2.1 255.255.255.0
crypto map remoteVPN
access-list 115 permit ip 10.1.1.0 0.0.0.255 any
Thanks and regards ,