If I want to have several simultanious ipsec tunnels with remote non cisco routers with dynamic IP addresses, can I configure PIX using dynamic map? How PIX will know wich subnet is behind wich peer?
thanks!
Yes you can.
In a dynamic map you can still create an entry per tunnel an specify parameters such as the match address
no] crypto dynamic-map dynamic-map-name dynamic-seq-num match address acl_name
To only problem is that only the remote site will be able to initiate the tunnel. But depending on your needs it may not be a problem.
I hope it will work, next week I will get additional equipement and try with several tunnels. But I still do not understand how PIX will know wich IP subnet is behind which peer. Peers are routers with wan interface to provider (dynamic addresses), and eth to network with devices that need secure communication to central site
thanks
Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.