ipsec tunnel

From: ying chang (ying_c@xxxxxxxxxxx)
Date: Sat May 11 2002 - 23:58:35 GMT-3

• Next message: David Luu: "Re: eigrp config over frame-relay questions"
• Previous message: sanjeev: "eigrp in a frame-relay cloud"
• Next in thread: Ahmed Mamoor Amimi: "Re: ipsec tunnel"
• Maybe reply: Ahmed Mamoor Amimi: "Re: ipsec tunnel"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
I saw two different ways to encrypt ipsec tunnel, one way is to have the
local-address point to the physical interface, and put the crypto map in
both the physical and tunnel interfaces; the second way is to have the
local-address point to the tunnel interface, and have the crypto map put in
the tunnel interface but NOT in the physical interface.

Data will be encrypted with either method, but does anyone know which way is
the correct method as far as encrypt tunnel concern? CCO uses the first
method, but the second one will let you see tunnel is encrypted with "show
cry eng conn act" command.

Thanks,
Chang

• Next message: David Luu: "Re: eigrp config over frame-relay questions"
• Previous message: sanjeev: "eigrp in a frame-relay cloud"
• Next in thread: Ahmed Mamoor Amimi: "Re: ipsec tunnel"
• Maybe reply: Ahmed Mamoor Amimi: "Re: ipsec tunnel"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:58:55 GMT-3