Options
IPSEC VPN on ISR2 router
Hi guys,
We have UC license installed on 2911 routers. We need to configure IPSEC VPNs. But IOS software currently does not support the command.
Could it be a licensing issue? if it is, can we install an additional licence, oher than UC?
Show version:
Router#sh ver
Cisco IOS Software, C2900 Software (C2900-UNIVERSALK9-M), Version 15.2(3)T1, RELEASE SOFTWARE (fc1)
Technical Support: Support and Documentation - Cisco Systems
Copyright (c) 1986-2012 by Cisco Systems, Inc.
Compiled Wed 13-Jun-12 14:24 by prod_rel_team
ROM: System Bootstrap, Version 15.0(1r)M12, RELEASE SOFTWARE (fc1)
Router uptime is 1 week, 2 days, 23 hours, 29 minutes
System returned to ROM by power-on
System restarted at 12:45:05 CET Fri Jan 10 2014
System image file is "flash0:c2900-universalk9-mz.SPA.152-3.T1.bin"
Last reload type: Normal Reload
Last reload reason: power-on
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
Export Compliance Product Report Application
If you require further assistance please contact us by sending email to
export@cisco.com.
Cisco CISCO2911/K9 (revision 1.0) with 479232K/45056K bytes of memory.
Processor board ID FGL153912DL
3 Gigabit Ethernet interfaces
2 Serial(sync/async) interfaces
1 ATM interface
3 terminal lines
2 Voice FXO interfaces
2 Cellular interfaces
DRAM configuration is 64 bits wide with parity enabled.
255K bytes of non-volatile configuration memory.
255744K bytes of ATA System CompactFlash 0 (Read/Write)
License Info:
License UDI:
Device# PID SN
*0 CISCO2911/K9 FGL153912DL
Technology Package License Information for Module:'c2900'
Technology Technology-package Technology-package
Current Type Next reboot
ipbase ipbasek9 Permanent ipbasek9
security None None None
uc uck9 Permanent uck9
data None None None
Configuration register is 0x2102
show license:
router#sh licen
Index 1 Feature: ipbasek9
Period left: Life time
License Type: Permanent
License State: Active, In Use
License Count: Non-Counted
License Priority: Medium
Index 2 Feature: securityk9
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
Index 3 Feature: uck9
Period left: Life time
License Type: Permanent
License State: Active, In Use
License Count: Non-Counted
License Priority: Medium
Index 4 Feature: datak9
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
Index 5 Feature: gatekeeper
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
Index 6 Feature: SSL_VPN
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: 0/0 (In-use/Violation)
License Priority: None
Index 7 Feature: ios-ips-update
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
Index 8 Feature: SNASw
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
Index 9 Feature: hseck9
Index 10 Feature: cme-srst
Period left: 7 weeks 1 day
Period Used: 1 week 2 days
License Type: EvalRightToUse
License State: Active, In Use
License Count: 36/0 (In-use/Violation)
License Priority: Low
Index 11 Feature: WAAS_Express
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
Index 12 Feature: UCVideo
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
We have UC license installed on 2911 routers. We need to configure IPSEC VPNs. But IOS software currently does not support the command.
Could it be a licensing issue? if it is, can we install an additional licence, oher than UC?
Show version:
Router#sh ver
Cisco IOS Software, C2900 Software (C2900-UNIVERSALK9-M), Version 15.2(3)T1, RELEASE SOFTWARE (fc1)
Technical Support: Support and Documentation - Cisco Systems
Copyright (c) 1986-2012 by Cisco Systems, Inc.
Compiled Wed 13-Jun-12 14:24 by prod_rel_team
ROM: System Bootstrap, Version 15.0(1r)M12, RELEASE SOFTWARE (fc1)
Router uptime is 1 week, 2 days, 23 hours, 29 minutes
System returned to ROM by power-on
System restarted at 12:45:05 CET Fri Jan 10 2014
System image file is "flash0:c2900-universalk9-mz.SPA.152-3.T1.bin"
Last reload type: Normal Reload
Last reload reason: power-on
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
Export Compliance Product Report Application
If you require further assistance please contact us by sending email to
export@cisco.com.
Cisco CISCO2911/K9 (revision 1.0) with 479232K/45056K bytes of memory.
Processor board ID FGL153912DL
3 Gigabit Ethernet interfaces
2 Serial(sync/async) interfaces
1 ATM interface
3 terminal lines
2 Voice FXO interfaces
2 Cellular interfaces
DRAM configuration is 64 bits wide with parity enabled.
255K bytes of non-volatile configuration memory.
255744K bytes of ATA System CompactFlash 0 (Read/Write)
License Info:
License UDI:
Device# PID SN
*0 CISCO2911/K9 FGL153912DL
Technology Package License Information for Module:'c2900'
Technology Technology-package Technology-package
Current Type Next reboot
ipbase ipbasek9 Permanent ipbasek9
security None None None
uc uck9 Permanent uck9
data None None None
Configuration register is 0x2102
show license:
router#sh licen
Index 1 Feature: ipbasek9
Period left: Life time
License Type: Permanent
License State: Active, In Use
License Count: Non-Counted
License Priority: Medium
Index 2 Feature: securityk9
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
Index 3 Feature: uck9
Period left: Life time
License Type: Permanent
License State: Active, In Use
License Count: Non-Counted
License Priority: Medium
Index 4 Feature: datak9
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
Index 5 Feature: gatekeeper
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
Index 6 Feature: SSL_VPN
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: 0/0 (In-use/Violation)
License Priority: None
Index 7 Feature: ios-ips-update
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
Index 8 Feature: SNASw
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
Index 9 Feature: hseck9
Index 10 Feature: cme-srst
Period left: 7 weeks 1 day
Period Used: 1 week 2 days
License Type: EvalRightToUse
License State: Active, In Use
License Count: 36/0 (In-use/Violation)
License Priority: Low
Index 11 Feature: WAAS_Express
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
Index 12 Feature: UCVideo
Period left: Not Activated
Period Used: 0 minute 0 second
License Type: EvalRightToUse
License State: Not in Use, EULA not accepted
License Count: Non-Counted
License Priority: None
my blog:https://keyboardbanger.com
Comments
-
Options
MAC_Addy
Member Posts: 1,740 ■■■■□□□□□□
Since it's IOS 15 you'll need to contact Cisco to enable that feature. That being said, you'll need to contact Cisco for any IOS upgrade/feature that needs to be done. They'll give you a code to enter once you have paid for it.2017 Certification Goals:
CCNP R/S -
Options
Legacy User
Unregistered / Not Logged In Posts: 0 ■□□□□□□□□□
You need a Security license to get it working. Yes you can install a Security License along with a UC license. That bundle is called a VSEC/K9. I've provided a link explaining the features of the Security license.
http://www.cisco.com/en/US/prod/collateral/routers/ps10536/qa_c67_606268.pdf