Cisco VPN

Hi All,
I am updating VPN diagram, and it was missing external address for VPN the site connects to 5 different vpn sites....I did a show run, and I just wanted to confirm that I am reading accurate external VPN link site IPs...
So will be the external IP address for the main VPN site, and all the rest of the sites which are listed as crypto isakmp will be the external vpn gateway for this main site?

ip route FastEthernet0/0/0
ip route FastEthernet0/0/0
ip route FastEthernet0/0/0
ip route

crypto isakmp policy 10
 authentication pre-share
 group 2
 lifetime 28800
crypto isakmp key elamotorsvpnsite1 address
crypto isakmp key elamotorsvpnsite2 address
crypto isakmp key elamotorsvpnsite3 address
crypto isakmp key elamotorsvpnsite4 address
crypto isakmp key elamotorsvpnsite5 address
crypto isakmp key elamotorsvpnsite6 address
crypto isakmp key elamotorsvpnsite7 address
crypto isakmp key elamotorsvpnsite8 address

crypto isakmp invalid-spi-recovery
crypto isakmp keepalive 30 10 periodic
crypto ipsec transform-set ESP-DES-HMAC esp-des esp-sha-hmac
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Look for the peer addresses.  That will tell you the IP address(es) of the remote VPN peer(s).

It is possible to have pre-shared keys entered for peers to which you do not connect, so I would not consider that a definitive list.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
LeoAuthor Commented:
so the peer addresses will be addressed as what in the config? or I have to connect on each Site to know the outside interface for the VPN IP address.
I have IP addresses of these tunnels, but they are for inside interfaces.
My aim is that when VPN link goes down on these sites, the IT tech. on these sites can ping on that IP addresses to know VPN is down, instead of trying to diagnose other issues which are not required.
LeoAuthor Commented:
interface Tunnel46
 description Static Virtual Tunnel Interface (SVTI) to Site3
 bandwidth 512
 ip address
 ip hello-interval eigrp 99 60
 ip hold-time eigrp 99 180
 ip flow ingress
 ip summary-address eigrp 99
 ip tcp adjust-mss 1400
 load-interval 30
 tunnel source GigabitEthernet0/0
 tunnel mode ipsec ipv4
 tunnel destination
 tunnel protection ipsec profile vpn-vti
 service-policy output SHAPE-512K

Would this will confirm that the VPN IP address for site 3 is same as what I listed above.
Prepare for an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program curriculum features two internationally recognized certifications from the EC-Council at no additional time or cost.

tunnel destination
LeoAuthor Commented:
ok.....for some of the sites....tunnel destination starts from  10.x range.....hows that possible?
The same way as 172.16.x.x range :)
Also private address space :)
As long as you can route to the address, it should work.

That's why I said to look at the actual tunnel, though, rather than the pre-shared keys.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.