Adtran
Help
The Adtran community holiday season is starting next week! The holiday period will span from December 21, 2024 to January 6, 2025. During this time, responses to feedback form submissions may be delayed. If you are encountering product issues, you can reach out to Adtran support at any time.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
normandifrancis
New Contributor
‎04-03-2016 11:36 PM

Site to Site VPN between a pair of Netvanta 3140 w/EFP

I am trying to set up a site to site VPN between a pair of Netvanta 3140s but cant seem to get the tunnel up. Routers are named HUB and SPOKE respectively. I have attached the configs for both routers. It is my plan to moved the VPN to the internet, but to simplify things; i am attempting to simply create the VPN tunnel wit the routers physically connected to each other over interface gig 0/3 and using IPs 172.15.16.1 and 172.15.16.1 simulating their public interfaces. I have created loopback interfaces 10.0.1.1 and 1.0.2.1 respectively for local subnet connectivity. Can anyone shed some light on this for me please?

Labels (1)
Labels
SPOKE.txt.zip
HUB.txt.zip
0 Kudos
Reply
2 Replies
mick
Contributor
Contributor
‎04-07-2016 04:59 PM

Re: Site to Site VPN between a pair of Netvanta 3140 w/EFP

I've only had a quick look, but from what you show you have configured an access list to select packets between LAN subnets, but you have not defined a policy class to allow them through;  e.g.:

ip policy-class Private

  allow list VPN-10-vpn-selectors stateless

!

ip policy-class Public

  allow reverse list VPN-10-vpn-selectors stateless

Also, you do not show a policy class for your loopback or other interfaces (private/public).

0 Kudos
Accept as Solution Reply
normandifrancis
New Contributor
‎04-08-2016 08:22 AM

Re: Site to Site VPN between a pair of Netvanta 3140 w/EFP

Thank Mick. I got it running, used a GRE tunnel and encypted the same also added the policies to the interfaces.

0 Kudos
Accept as Solution Reply