Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
229
Views
0
Helpful
1
Replies

site-2-site VPN configuration assistance

cisco24x7
Level 6
Level 6

‎01-22-2008 08:20 AM - edited ‎03-11-2019 04:51 AM

Anyone has ideas on how to accomplish this?

External IP: 1.1.1.1/28

Internal IP: 192.168.1.1/24

DMZ IP: 192.168.2.1/24

loopback0: 192.168.1.17/28

I have a Cisco 2621 running IOS with IPSec capable code.

Very simple design, External, Internal and DMZ

interfaces.

Hosts behind the "Internal" get to the Internet via port address

translation on the External interace. The DMZ interface

is connected for extranet partners coming over the FRAME-relay,

MPLS, PPP, etc... connections.

There are twenty site-2-site VPNs on this router from both

the External and DMZ interfaces. I use the loopback0 as the

VPN terminating endpoint. Everything is woring fine.

Now customer wants to replace this router with a Cisco ASA

5520 appliance. The requirement is to keep ALL existing

VPNs the same. Since creating loopback is not possible on

the ASA, how would one go about making this configuration

work with ASA? One other things, NO CHANGE CAN BE MADE ON

THE OTHER 20 REMOTE VPN PEERS.

Thanks.

Labels:
0 Helpful
1 Reply 1

cisco24x7
Level 6
Level 6

‎01-24-2008 12:02 PM

Anyone can help me with this? Thanks.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card