ASA5505 to replace several VPN Clients (Hardwareclient)

Unanswered Question
Mar 26th, 2008
User Badges:

Hello all,

I want to know if it's possible to use the ASA5505 in a way that only one interface is connected to the LAN. A VPN Site to Site shall be done by NAT-T.

The interface IP should be set by DHCP from a router. The router shall route the traffic which shall be encrypted to the ASA. The ASA sends the Traffic to the Concentrator via tunnel.

Has someone ever done a scenario like that? Is there a sample configuration for this scenario?

Or can someone explain why this cannot work with the ASA?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
gbudd12345 Fri, 03/28/2008 - 08:33
User Badges:

Are you asking if you can do this configuration with only one interface connected total, or only have interface on the WAN and one interface on the LAN? You can shut down the unused interfaces on the firewall so only two are active.

--Gavin Budd

rvopel Mon, 03/31/2008 - 08:59
User Badges:

Please take a look at my shematic. I think it tells you more than thousand words.

Thank you!


This Discussion