Technical information
53
IPSec VPN Acceleration Services Module Installation and Configuration Note
78-14459-03 Rev C0
Configuring a VPN Using the VPN Module
Step 5 From privileged EXEC mode, add an inside interface VLAN (VLAN 53) and an outside access port
VLAN (VLAN 54) to the VLAN database as follows:
a. Router# config t
Enter configuration commands, one per line. End with CNTL/Z.
b. Router(config)# vlan 53
Router(config-vlan)# name inside_interface_vlan
Router(config-vlan)# exit
Router(config)#
c. Router(config)# vlan 54
Router(config-vlan)# name outside_access_port_vlan
Router(config-vlan)# exit
Router(config)#
Step 6 From interface configuration mode, create a Layer 3 inside interface VLAN and attach a crypto map as
follows:
a. Router# config t
Enter configuration commands, one per line. End with CNTL/Z.
b. Router(config)# interface vlan 53
c. Router(config-if)# description inside_interface_vlan_for_crypto_map
d. Router(config-if)# ip address 192.168.100.254 255.255.255.0
e. Router(config-if)# crypto map map101
f. Router(config-if)# no shutdown
Step 7 From interface configuration mode, create an outside interface VLAN for the outside access port VLAN
as follows:
a. Router(config)# interface vlan 54
b. Router(config-if)# description outside_interface_vlan_for_outside_access_vlan
c. Router(config-if)# no shutdown
Step 8 From interface configuration mode, add inside interface VLAN 53 as an allowed VLAN as follows:
a. Router(config-if)# interface gigabitethernet 5/1
b. Router(config-if)# description inside_vpn_module_trunk_port
c. Router(config-if)# switchport trunk allowed vlan add 53
Step 9 From interface configuration mode, add switch port 1/2 to the outside access port VLAN and connect
the outside access port VLAN to the inside interface VLAN as follows:
Router(config-if)# interface gigabitethernet 1/2
Router(config-if)# description outside_vlan_access_port
Router(config-if)# switchport
Router(config-if)# switchport access vlan 54
Router(config-if)# crypto connect vlan 53