[120560] in North American Network Operators' Group
Re: Ipsec/VRF Mpls ?
daemon@ATHENA.MIT.EDU (Kenny Sallee)
Thu Dec 24 12:25:14 2009
In-Reply-To: <c33829390912182303i780166ai2968a18915b1263f@mail.gmail.com>
Date: Thu, 24 Dec 2009 09:24:37 -0800
From: Kenny Sallee <kenny.sallee@gmail.com>
To: Stephane MAGAND <stmagconsulting@gmail.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
Hello Stephane - if you search google for VRF aware IPSEC you will find
links and relevant information and configs.
I did this on older hardware by creating an IPSEC tunnel between 2 routeable
loopbacks and creating a GRE tunnel that used the loopbacks and tunnel
source and destination. Then place the GRE tunnel in a VRF.
Kenny
On Fri, Dec 18, 2009 at 11:03 PM, Stephane MAGAND <stmagconsulting@gmail.com
> wrote:
> Hi
>
> after a first post with 0 answer (very thanks ..) i test a second post for
> get a small help.
>
> I am search a simple sample of configuration for a cisco 2821 for connect
> a Ipsec routers ton a MPLS IP VPN Backbone
>
> My cisco 2821 have two interface, one connected at my MPLS network
> and the second at the Internet.
>
> I create two vrf, one for a site to site and the second for a Remote User
> Access
>
> anyone have this into a config ? because i never have used Ipsec actually
> on
>
> cisco.
>
> The site-to-site router are a C1721, and remote user use cisco IPSEC client
> and
> i want a radius authentification (and it's the radius that sent the vrf)
>
> thanks for your help
> Stephane
>
