Configuring IPv6 IPsec VTI
Configuring IPv6 IPsec VTI
Configuring IPv6 IPsec VTI
Perform this task to configure and enable IPv6 IPsec virtual tunnel mode for IPv6.
Prerequisites
SUMMARY STEPS
1. enable
2. configure terminal
3. ipv6 unicast-routing
6. ipv6 enable
9. tunnel mode {aurp | cayman | dvmrp | eon | gre | gre multipoint | gre ipv6 | ipip
[decapsulate-any] | ipsec ipv4 | iptalk | ipv6 | ipsec ipv6 | mpls | nos | rbscp}
DETAILED STEPS
Example:
Router(config-if)# tunnel source
ethernet0
Step 8 tunnel destination {host-name | ip- Specifies the destination
address | ipv6-address} for a tunnel interface.
Example:
Router(config-if)# tunnel
destination 2001:DB8:1111:2222::1
Step 9 tunnel mode {aurp | cayman | Sets the encapsulation
dvmrp | eon | gre | gre multipoint | mode for the tunnel
gre ipv6 | ipip [decapsulate-any] | interface. For IPsec, only
ipsec ipv4 | iptalk | ipv6 | ipsec the ipsec ipv6 keywords
are supported.
ipv6 | mpls | nos | rbscp}
Example:
Router(config-if)# tunnel mode
ipsec ipv6
Step 10 tunnel protection ipsec profile Associates a tunnel
name [shared] interface with an IPsec
profile. IPv6 does not
Example: support the shared
keyword.
Router(config-if)# tunnel protection
ipsec profile profile1
Perform this optional task as needed to verify IPsec tunnel mode configuration.
SUMMARY STEPS
8. show crypto session [detail] | [local ip-address [port local-port] | [remote ip-address
[port remote-port]] | detail] | fvfr vrf-name | [ivrf vrf-name]
DETAILED STEPS
Example:
Router# show adjacency
detail
Example:
Example:
Example:
Example:
Example:
Example:
Example:
Router# show ipv6 access-
list
Step 11 show ipv6 cef [ipv6- Displays entries in the IPv6 Forwarding
prefix/prefix-length] | [interface- Information Base (FIB).
type interface-number] [longer-
prefixes | similar-prefixes |
detail | internal | platform |
epoch | source]]
Example:
Router# show ipv6 cef
Step 12 show interface type number Displays numbers of packets that were
stats process switched, fast switched, and
distributed switched.
Example: