8-37
Cisco Router and Security Device Manager Version 2.2 Users Guide
OL-4015-08
Chapter8 Site-to-Site VPN
Create Site to Site VPN
What do you want to do?
View Defaults
This window displays the default Internet Key Exchange (IKE) policy, transform
set, and IPSec rule that SDM will use to configure a Quick Setup site-to-site VPN.
If you need a different configuration than this window shows, check Step-by-Step
wizard so that you can define configuration values.
If you want to: Do this:
Quickly configure a site-to-site VPN
using SDM-provided defaults.
Check Quick setup, and then click Next.
SDM will automatically provide a default IKE policy to
govern authentication, a default transform set to control the
encryption of data and a default IPSec rule that will encrypt
all traffic between the router and the remote device.
Quick setup is best used when both the local router and the
remote system are Cisco routers using SDM.
Quick setup will configure 3DES encryption if it is supported
by the IOS image. Otherwise, it will configure DES
encryption. If you need AES or SEAL encryption, click
Step-by-step wizard.
View the default IKE policy, transform
set, and IPSec rule that will be used to
configure a One-step VPN.
Click View Default s.
Configure a site-to-site VPN using
parameters that you specify.
Check Step-by-Step wizard, and then click Next.
You can create a custom configuration for the VPN, and use
any of the SDM defaults that you need.
Step-by-step wizard allows you to specify stronger encryption
than the Quick setup wizard allows.