Table of Contents
Advertisement
Edit Site-to-Site VPN
Generate Mirror..Button
Note
Add new connection
Step 1
Step 2
Add Additional Crypto Maps
Cisco Router and Security Device Manager 2.5 User's Guide
11-26
Click to create a text file that captures the VPN configuration of the local router
so that a remote router can be given a VPN configuration that enables it to
establish a VPN connection to the local router. This button is disabled if you have
selected a dynamic site-to-site VPN tunnel.
Any previously configured VPN connections detected by Cisco SDM that do not
use ISAKMP crypto maps will appear as read-only entries in the VPN connection
table and cannot be edited.
Use this window to add a new VPN connection between the local router and a
remote system, referred to as a peer. You create the VPN connection by
associating an IPSec policy with an interface.
To create a VPN connection:
Select the interface you want to use for the VPN from the Select Interface list.
Only interfaces that are not used in other VPN connections are shown in this list.
Select a policy from the Choose IPSec Policy list. Click OK to return to the VPN
Connections window.
Use this window to add a new crypto map to an existing IPSec policy. This
window shows the interface associated with the VPN connection that you selected
in the VPN Connections window, the IPSec policy associated with it, and the
crypto maps that the policy already contains.
The crypto map specifies a sequence number, the peer device at the other end of
the connection, the set of transforms that encrypt the traffic, and the IPSec rule
that determines which traffic is encrypted.
Chapter 11
Site-to-Site VPN
OL-4015-12
Advertisement
Table of Contents
Troubleshooting
