none
Customize Cisco VPN script for Multi-site Azure VPN RRS feed

  • Question

  • Hi Fellows,

    I am in a process to establish Azure Dynamic VPN with multiple sites. VPN was already established with HO Site. Now I need to establish VPN with Branch/secondary site.

    I have already added the local site using the XML import method. Then I downloaded the VPN script, but it is showing all the information related to HO local site. I was expecting the script will be modified according to the new local site configured (By the way I read on one blog that you cannot download VPN script for further sites once you use the XML import method. I am not sure how true it is)

    Anyway. Now I need to modify the VPN script so that it can be executed on Branch Site Cisco router (already verified the compatibility). The point confuses me is the IP address 169.254.0.1 (shown below). Do I need to change this IP for each site or it will be same for all sites?

    I am not a network person, but if not wrong, I think this is Azure's side of tunnel IP.

    --------------------------------------

    int tunnel 1
      ip address 169.254.0.1 255.255.255.0
      ip tcp adjust-mss 1350
      tunnel source <NameOfYourOutsideInterface>
      tunnel mode ipsec ipv4
      tunnel destination 40.xxx.xx.xx
      tunnel protection ipsec profile vti
      exit

    Regards.


    J.A




    Monday, April 25, 2016 10:43 AM