Is it possible to configure the Cisco ASA5510 (running 7.2(2) software) to simultaneously support remote PC users using VPN client (4.8.01) and also as a VPN endpoint for a remote PIX?
If it is, anyone has a sample configuration that I can jump start with?
Thanks...
BV
Yes.
Sorry, never configured an ASA myself, but I know the above is possible as I've done it for PIX 6.
Thanks Walter...
Would you be able to post the summarized version of the PIX config for this setup?
some Cisco CCO ASA URL's to start with:
Cisco ASA 5500 Series Adaptive Security Appliances - Introduction
Configure
snipped-for-privacy@gmail.com schrieb:
Sure.
access-list to-remote-pix extended permit 192.168.1.0 255.255.255.0 192.168.2.0
255.255.255.0 ip local pool mobclntpool 192.168.3.201-192.168.3.254 crypto ipsec transform-set esp-aes-sha esp-aes esp-sha-hmac crypto dynamic-map mobclntmap 10 set transform-set esp-aes-sha crypto map vpnmap 20 match address to-remote-pix crypto map vpnmap 20 set peer 169.254.42.23 crypto map vpnmap 20 set transform-set esp-aes-sha crypto map vpnmap 90 ipsec-isakmp dynamic mobclntmap crypto map vpnmap interface outside tunnel-group DefaultRAGroup general-attributes address-pool (outside) mobclntpool tunnel-group DefaultRAGroup ipsec-attributes pre-shared-key notquitesosecret tunnel-group 169.254.42.23 type ipsec-l2l tunnel-group 169.254.42.23 ipsec-attributes pre-shared-key veryverysecret username remotevpnuser password evenmoresecret privilege 2should be the essential parts.
HTH T.
8.2.0 255.255.255.0
Thanks...
BV
Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.