Hello to all, and thank you in advance for any advice you can provide.
I have an ASA 5220 set up with 3 networks. I have one outside network, one inside network, and a "DSL" network. Everything works great, except I'm trying to clean up the way we connect with the VPN client.
At the moment, if we are outside of our network, we use the outside IP address of the router (x.x.A.1). When we are on the DSL subnet, we are unable to VPN to the outside IP address, so we are forced to use a completely separate set of credentials and to connect to the IP address of the DSL subnet (x.x.B.1).
Is there any way to set up the VPN in such a way that we would be able to use the same credentials to connect to either interface? I can use selective DNS to ensure that the requests are being sent to the proper IP address ... but as it stands, it won't accept one set of credentials on each interface.
Any assistance would be appreciated.
Did you try configuring a seperate crypto map entry for the DSL interface.
Lets say you have a crypto map entry like this..
crypto dynamic-map dynmap 65534 set transform-set myset
cry map outside_map 65536 ipsec-isakmp dynamic dynmap
cry map outside_map interface outside
Can you try creating another crypto map entry with a different name for the DSL interface.
Let me know.