I have a router with two DSL connections (FE 0/0 & FE 0/1) Both are configured static IP's. There is a IPSEC LAN 2 LAN VPN connecting to one of the DSL connections say FE 0/0.
How would I approach allowing the use of both DSL lines for IPSEC, if not possible, allowing both DSL's to dual home internet but one for IPSEC tunnel? Would OER be something I could use? If so is there an example applicable to this situation?
I have route-maps in place for the NAT'ing to take place, but as soon as I enter the other default route the router begins dropping packets.
------- interface FastEthernet0/0 description ISP1_DSL ip address 10.10.20.1 255.255.255.248 ip nat outside crypto map TUNNEL ! interface FastEthernet0/1 description ISP2_DSL ip address 192.168.50.1 255.255.255.248 ip nat outside ! interface FastEthernet0/3 description ISP2_DSL ip address 192.168.20.1 255.255.255.0 ip nat inside !
ip nat pool DSL1 10.10.20.1 10.10.20.1 netmask 255.255.255.248 ip nat pool DSL2 192.168.50.1 192.168.50.1 netmask 255.255.255.248 ! ip nat inside source route-map DSL1 pool DSL1 overload ip nat inside source route-map DSL2 pool DSL2 overload ! ! ip access-list extended DONOTNAT deny ip 192.168.20.0 0.0.0.255 192.168.100.0 0.0.0.255 permit ip 192.168.20.0 0.0.0.255 any !