03-12-2008 12:29 PM - edited 02-21-2020 01:56 AM
I work for a company in the US with a parent company in Japan. I'm trying to replace the Netscreen firewall at this end with a new ASA 5510 and have it l2l with the Netscreen that is likely at the other end. Anyone have any ideas?
03-18-2008 01:51 PM
The ASA configuration will be same as it would be for and ASA to ASA vpn. Following link may help you
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800ef796.shtml
03-19-2008 04:00 AM
I figured things out by setting the new ASA up as though it were a seperate building and connecting it to the internet along with my existing Netscreen. I was able to set up a VPN between the ASA and my Netscreen by following the procedure outlined here http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00801c4445.shtml for the Netscreen configuration. I believe the problem is that the Netscreens are currently set up with manual key IKE instead of the autokey IKE outlined in the example. I am now putting together instructions for my counterparts at the Japan end of the connection to change their end of the VPN so I can switch to the new ASA here.
Thanks,
Steve
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide