Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

WAN Environment running IPSEC Encrypted Tunnel 1

Status
Not open for further replies.
Krelian

Krelian

MIS
May 30, 2001
23
0
0
US
I have a general question. Our company has a corporate office Cisco 3640 running multiple encryted VPN tunnels to 7 regional offices with 2620s. We have just add a new office and we have a spare Cisco 2620 with a T1 interface and ethernet interface. But the IOS version of this spare router does not have the IPSEC encrytion feature set. I was talking to a consultant to see if we can setup a standard GRE tunnel with this spare router to the new office until we have the budget to purchase another one. I was told that within the WAN environment, all the routers must be configured to participate with encryption due to the encryption structure and layers desgined by Cisco.

So, is this true? And if so, is there a way to configure this to get around it from buying a new router with encryion feature set. We are running NAT with EIGRP within our WAN internetwork. Any help is greatly appreciated.

_h
 
Sort by date Sort by votes
alrighty, well I take it you don't have a CCO login on That would be the quickest and easiest solution to your problem, i.e. download the latest and greatest feature set that contains IPSEC for your 2620. If you guys have a bunch of Cisco's in your WAN it doesn't make a lot of sense to me that you wouldn't have been provided a CCO login with your contract. Please advise, in the meantime I would recommend slapping that baby in, granted you wouldn't be able to establish an encrypted VPN tunnel using IPSEC but at least you'd have IP connectivity to your remote office. I'm the Fanciest of the Fancy...INDEED
 
Upvote 0 Downvote
Pete,

Thanks for you reply. No, we don't have a CCO login account. Since we didn't deal with Cisco directly, and the VPN/WAN was pretty much setup by a consultant orginally, we were never given a CCO account. Right now, we're trying to do some of the configurations ourselves in house instead of involving the consultant.

From your post, it looks like it is possible to have a mixed WAN environment with IPSEC VPN tunnels to some offices and non encryted GRE tunnels to other offices, and we can pass IP traffic between offices with encryted tunnels to GRE tunnels. Is that correct?

_h
 
Upvote 0 Downvote
Telnet into one of your IPsec routers, set it up as a tftp server and download the image from the router.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

mrdom
  • Locked
  • Question
RV325: Accessing LAN and WAN resources using the same hostname ...
Replies
0
Views
42
mrdom
mrdom
Mogles49
  • Locked
  • Question
tshooting-tunnels
Replies
0
Views
27
Mogles49
Mogles49
Punk6296
  • Locked
  • Question
slow WAN download speeds over UC540
Replies
0
Views
45
Punk6296
Punk6296
chieftan
  • Locked
  • Question
PE to CE running IPv6
Replies
1
Views
64
chieftan
chieftan
DigitalG
  • Locked
  • Question
cisco rv180 vpn tunnel between a rv130
Replies
0
Views
34
DigitalG
DigitalG

Part and Inventory Search

Sponsor

Back
Top