ASA to ASA IPSec in transport mode.

Unanswered Question
Jul 16th, 2007

hi guys,

i have 2 ASA connected via IPSec tunnel wanna configure IPSec for 2 LAN. at the LAN we have public IP's . which means i need to configure transport mode VPN. can anyone send me a link or the basic config.

regards

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Infrastructure Team Wed, 11/30/2016 - 01:06

Hi vkapoor,

Done that.  The tunnel stays up for 37 seconds, with routing information passing, then T5 on the remote 1921 changes state to down again.

thanks.

Anonymous (not verified) Fri, 07/20/2007 - 20:44

Hello,

By having two public IP's doesn't mean that should build your VPN tunnel using ESP+transport mode, this is only recommended when using GRE over IPSec or DMVPN to save overhead, 20 bytes.

My suggestion is to build the legacy L2L, with tunnel mode, you can see this link as a guide:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00805a87f7.shtml

Regards,

Enrique Quant

Anonymous (not verified) Fri, 07/20/2007 - 20:45

Anonymous (not verified) Fri, 07/20/2007 - 20:45

Anonymous (not verified) Fri, 07/20/2007 - 20:57

Actions

This Discussion