jrhundsr
asked on
Configuring a Virtual Tunnel Interface with IP Security between two Cisco 1811's
Ok I have two Ciso 1811's configured for Internet access at two different locations. I am looking to set up a VPN between them and have some questions.
Router 1 info:
WAN IP: 67.53.189.178
Local IP: 192.168.2.1
Router 2 info:
WAN IP: 192.168.2.199
Local IP: 192.168.2.1
I will post both configs below.
Router 1 info:
WAN IP: 67.53.189.178
Local IP: 192.168.2.1
Router 2 info:
WAN IP: 192.168.2.199
Local IP: 192.168.2.1
I will post both configs below.
Router 1 Config
show runnin
Building configuration...
Current configuration : 2850 bytes
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname BeyondAbilities-GB
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$DIEZ$RaKhFvakIbvJ6QCYtYOjg1
!
username beyondabilities privilege 15 secret 5 $1$wz9D$0af3EsqVngrQv1r0CGRlD0
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
no aaa new-model
ip subnet-zero
!
!
ip cef
ip dhcp excluded-address 192.168.2.1
!
ip dhcp pool LAN
network 192.168.2.0 255.255.255.0
default-router 192.168.2.1
dns-server 209.18.47.61 209.18.47.62
!
!
ip ips po max-events 100
no ftp-server write-enable
!
!
!
!
!
bridge irb
!
!
interface Dot11Radio0
no ip address
!
encryption vlan 1 mode ciphers tkip
!
ssid BeyondAbilities-GB
vlan 1
authentication open
authentication key-management wpa
guest-mode
wpa-psk ascii 0 **********
!
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
station-role root
!
interface Dot11Radio0.1
encapsulation dot1Q 1 native
no cdp enable
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
!
interface Dot11Radio1
no ip address
shutdown
speed basic-6.0 9.0 basic-12.0 18.0 basic-24.0 36.0 48.0 54.0
station-role root
!
interface FastEthernet0
description RoadRunnerConnection
ip address 67.53.189.178 255.255.255.252
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
no cdp enable
!
interface FastEthernet1
no ip address
shutdown
duplex auto
speed auto
!
interface FastEthernet2
no ip address
shutdown
!
interface FastEthernet3
no ip address
shutdown
!
interface FastEthernet4
no ip address
shutdown
!
interface FastEthernet5
no ip address
shutdown
!
interface FastEthernet6
no ip address
shutdown
!
interface FastEthernet7
no ip address
shutdown
!
interface FastEthernet8
no ip address
!
interface FastEthernet9
no ip address
shutdown
!
interface Vlan1
no ip address
ip nat inside
ip virtual-reassembly
bridge-group 1
!
interface Async1
no ip address
!
interface BVI1
ip address 192.168.2.1 255.255.255.0
ip nat inside
ip virtual-reassembly
!
ip classless
ip route 0.0.0.0 0.0.0.0 67.53.189.177
!
!
no ip http server
no ip http secure-server
ip nat pool ovrld 67.53.189.178 67.53.189.178 prefix-length 16
ip nat inside source list 1 pool ovrld overload
!
access-list 1 permit 192.168.2.0 0.0.0.255
!
!
!
!
control-plane
!
bridge 1 protocol ieee
bridge 1 route ip
!
line con 0
password **********
login
line 1
stopbits 1
speed 115200
flowcontrol hardware
line aux 0
line vty 0 4
password **********
login
line vty 5 15
privilege level 15
login local
!
no scheduler allocate
end
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Yeah I dont see a reason why it shouldnt.
You might have seeb this link alreadly
http://www.cisco.com/en/US/technologies/tk583/tk372/technologies_white_paper0900aecd8029d629_ps6635_Products_White_Paper.html
You might have seeb this link alreadly
http://www.cisco.com/en/US/technologies/tk583/tk372/technologies_white_paper0900aecd8029d629_ps6635_Products_White_Paper.html
ASKER
The WAN IP is actually 206.40.119.63
Open in new window