OK...I really need this. I can't memorize all of the router cli tasks, altough they are logical and follow the basic concept of Cisco IPSec site2site technology. Anyway, just in case...

  •     define transform-set
  •     define isakmp policy
  •     crypto ACL
  •     crypto MAP
  •     assign MAP to INTF
  •     define INTF ACL
  •     some kind of routing must exist...static or dynamic!

If everything went OK, then check established IPSec tunnel parameters with show crypto isakmp sa and show crypto ipsec sa.

Leave a reply