Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

C1721 VPN tunnel to C3015 VPN Concentrator

Status
Not open for further replies.
rainman

rainman

ISP
Mar 22, 2001
186
US
Has anybody here ever created a VPN tunnel between a C1721 router and a C3015 VPN Concentrator? Currently I connect to this VPN concentrator via the Cisco VPN Client (for Windows). This allows my 1 PC access to my LAN @ work. I have a C1721 router that I would like to configure to access this VPN similar to how I am accessing it with the PC, but then share out access to my internal LAN @ home.

I can access the VPN Concentrator's config to view the active configuration but I probably can't make any big config changes to it. As for the C1721 I can config that from scratch since it's @ home.

Any thoughts?

Tx - Rainman
 
Sort by date Sort by votes
I use router to concentrator VPN's, they are set up as LAN to LAN connections on the 3015.

But it sounds like you want to set your 1721 router to act the same way as a Cisco VPN PC based client, I am pretty sure this is not possible. When the client software connects to the 3015 the concentrator pushes details such as IP address, WINS DNS or what ever is required. This policy push process will not work to a router, so I'd expect the connection process to fail.
 
Upvote 0 Downvote
Isn't it possible to push that IP to a software interface tho (i.e., Loopback, Virtual-Template, Virtual-Access)? I have not found any way to do this yet but it would be beneficial and Cisco has everything else in their IOS.

Cisco also makes a hardware-based VPN client (3002). If this has the capability to simulate the CSVPN software then I would hope the IOS can do the same.


-Rainman
 
Upvote 0 Downvote
Rainman, I read the URL, you have probably got this working as that appears to be exactly what you want. Once again the IOS proves me wrong, I've learnt something new:)
 
Upvote 0 Downvote
Routerman -

My configuration is ready to go, except I'm running into a snag - the VPN concentrator I connect to is using TCP 10000 instead of UDP 500. I turned on various debugs (debug crypto ipsec, debug crypto isakmp) and I see it trying to connect to the server on UDP 500 but I need it to do TCP 10000. Any other thoughts? Is it possible to nat UDP 500 on the inside to TCP 10000 on the outside of my C1700 router?


-Rainman
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

B
  • Locked
  • Question
Cisco IP phone 7841 8851 unable to forward all to external number
Replies
0
Views
380
badwolf1686
B
quazimotto
  • Locked
  • Question
Cisco ASA_5505 VPN to Juniper_SRX210 VPN IS UP_ No Traffic!!!!!!
Replies
0
Views
306
quazimotto
quazimotto
CPM86
  • Locked
  • Question
Cisco isr 4331 with IOS and sip busy fail over to 2nd sip number on pbx?
Replies
0
Views
531
CPM86
CPM86
Luzbel
  • Locked
  • Question
Connecting HVAC controller to network
Replies
0
Views
554
Luzbel
Luzbel
Skip Rango
  • Locked
  • Question
how to backup cisco sg500-52p switch
Replies
1
Views
758
madwok
madwok

Part and Inventory Search

Sponsor

Back
Top