How to configure Site-Site IPSec VPN in Cisco Routers (IOS)

7 Comments

  1. This is very good note on building VPN. Very easy explaination

  2. what IOS do i require to make this configuration possible??

  3. Excellent. Easy to understand for a first-timer like me. Thank you.

  4. Your wildcard mask in your ACL is wrong. All traffic will be denied.
    should be 0.0.0.255 otherwise your ACL will not work.

  5. Setup a Crypto ACL

    This ACL defines the protected traffic that passes through the VPN tunnel. Customize the ACL as per your organisation needs.

    VPN-HQ(config)# ip access-list 101 permit ip 172.11.1.0 0.0.0.0 10.11.2.0 0.0.0.0

    Is the above access-list statement right . packet tracer not accepting this

  6. The problem is the access-list,the wild card of 0.0.0.0 is expecting an ip add of 172.11.1.0.
    NOTE: zesros means i care while ones means i do not care in access-list wild card.

Leave a Reply

Your email address will not be published.