Crypto maps define and control the policy for encryption on a per-session basis. The router will only encrypt a packet when it is outbound from an interface, and it will only decrypt inbound packets.

Cisco identifies five steps for defining crypto maps.

  1. Enter the crypto map configuration mode. This is the configuration mode where the encrypted links are defined.
  2. Specify the remote peer router's name.