Yup.
You create a loopback with the IP address that you want to use for all IPSec
connections, then use the global command "crypto map (map-name)
local-address (interface-id)". This then makes that crypto map use the IP
address of the loopback for all connections, not the address of the
interface it's applied on.
Cheers,
--
Ben Nagy
Network Security Specialist
Marconi Services Australia Pty Ltd
Mb: +61 414 411 520 PGP Key ID: 0x1A86E304
> -----Original Message-----
> From: Michael [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, May 08, 2001 11:25 PM
> To: [EMAIL PROTECTED]
> Subject: IPsec Using Loopback
>
>
> Does anyone tried IPSEC on cisco routers using loopback
> addresses? We need
> this implementation because we have redundant paths and we
> need IPSEC to
> be always up even if one of the link fails.
> Thanks
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
