EasyVPN with a ASA 5505

Unanswered Question
Aug 28th, 2007
User Badges:

Hello,


The aim is to deploy 2 ASA 5505 and to create a VPN between them.


I saw ASA can operate as both client or server for EasyVPN.


On the VPN interface (ASDM) I find the check button to activate the EasyVPN option but it seems to be for the client side only.


How can I configure the server side on my main site? Can I link two distinct agencies to the the main site py EasyVPN ?


Is there a link or URL for documentation or HOWTO ?


Edit: for debug, how can I permit the Ping command to go throught my ASA 5505 ?



Thanks for your answers.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
JORGE RODRIGUEZ Wed, 08/29/2007 - 11:38
User Badges:
  • Green, 3000 points or more

Hi Lionel,


first make sure both appliences have proper license for site-to-site vpn, known as VPN-3DES-AES or 3DES-AES, usually seen in "show version" as being enabled.




Here is an example for site to site vpn tunnel between two security appliences.


http://www.cisco.com/en/US/partner/docs/security/asa/asa72/getting_started/asa5500/quick/guide/sitvpn_b.html


as far as allowing ping say from site a to site b internal hosts through that tunnel.


add in asa

"management-access inside"


HTH

Jorge

Actions

This Discussion