Had someone come in and set up a vpn for me and they made a mess of things, so I would like to do it myself. Like to setup a router to router vpn using the following: hub router - C2621 IOS 12.2 protocol is eigrp
remote router (spoke) C1721 IOS 12.3 protocol is eigrp
What I would like to do is be able to create a tunnel between the 2 routers (one is home and the other is the office). I'll want to allow certain ports through (3307, 4899, 25, 110, 53, 22)
I've noticed that there is a acl for allowing gre through. access-list 125 permit gre host 111.222.333.444 host 111.222.333.445 but when I do a" sh crypto isakmp sa" nothing is visible same goes for sh crypto peer, profile, etc. The only bit of info I get is when I do: sh crypto map Crypto Map "clientmap" 20 ipsec-isakmp Peer = 111.222.333.444 Extended IP access list 125 access-list 125 permit gre host 111.222.333.445 host
111.222.333.444 Security association lifetime: 4608000 kilobytes/3600 seconds PFS (Y/N): N Transform sets={ rtpset, } Interfaces using crypto map clientmap:Also need to know how to determine if tunnel is up.
So if someone can direct me to a good document on explaining the setup and the commands I would appreciate it.
Thanks