asked on Cisco Site to Site VPN Help
We have two sites that we would like to connect via site to site vpn. I have configured as much as I can by tutorials but seem to be stuck. Can anyone please review my attached config files and tell me what i'm lacking? It would be great if you could give examples by command example.
Site 1 (T) - Main site
Local: 10.8.40.x
External IP in config listed as: T.T.T.T for security purposes.
Site 2 (C)
Local: 10.8.50.x
External IP in config listed as: C.C.C.C for security purposes.
**These two sites were at once both using local ip scheme of 10.8.146.x and were connected via a T1 line. We split this up into the two new schemes of 10.8.40.x and 10.8.50.x but currently there is still needed vendor equipement at both sites with 10.8.146.x IP scheme and I would like to allow communication between 10.8.146.x at both sites open as well if possible.
site1-T-.txt
site2-C-.txt
Site 1 (T) - Main site
Local: 10.8.40.x
External IP in config listed as: T.T.T.T for security purposes.
Site 2 (C)
Local: 10.8.50.x
External IP in config listed as: C.C.C.C for security purposes.
**These two sites were at once both using local ip scheme of 10.8.146.x and were connected via a T1 line. We split this up into the two new schemes of 10.8.40.x and 10.8.50.x but currently there is still needed vendor equipement at both sites with 10.8.146.x IP scheme and I would like to allow communication between 10.8.146.x at both sites open as well if possible.
site1-T-.txt
site2-C-.txt
Internet Protocol SecurityRoutersVPN
Last Comment
Matt V
ASKER
If I run the debug crypto ipsec and debug crypto isakmp it says debugging is on but does not show any output. How do I get it to show output?
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
Debug the isakmp and ipsec to see if you can get a clue to what is failing.