Question : RADIUS with other IPSEC tunnels

Hello Experts,

I have a router that currently has a site to site IPSEC tunnel with a pre shared key to another router, and I would like to add configuration for remote VPN using the Cisco VPN client and RADIUS to authenticate the remote users. It seems when I create the authentication group, it kills my site to site tunnel, and I can't have both working together. Do you know a way to have RADIUS used to authenticate the VPN clients on the remote computers, and just use the pre shared key for the existing site to site connection?

Thank you!

Answer : RADIUS with other IPSEC tunnels

If you post your current config (please sanitize it to remove passwords etc) you will probably get more accurate help than this.

There can be a few different reasons for this. Most probably it is not the creation of a configuration group that kills the l2l-tunnel but the way it is applied.
* Your remote-vpn is probably configured with a dynamic crypto map which is applied to the static crypto map. Make sure that this dynamic crypto map has a higher sequense number in the static crypto map than the sequense number used by your static tunnel.
* If you are using preshared-key add the "no-xauth"-keyword at the end of the "crypto isakmp key"-command to make sure that your l2l-tunnel isnt xauthed (asked for username/password).

Br Jimmy
Random Solutions  
 
programming4us programming4us