03-26-2008 10:37 AM
Hello all,
I want to know if it's possible to use the ASA5505 in a way that only one interface is connected to the LAN. A VPN Site to Site shall be done by NAT-T.
The interface IP should be set by DHCP from a router. The router shall route the traffic which shall be encrypted to the ASA. The ASA sends the Traffic to the Concentrator via tunnel.
Has someone ever done a scenario like that? Is there a sample configuration for this scenario?
Or can someone explain why this cannot work with the ASA?
03-28-2008 08:33 AM
Are you asking if you can do this configuration with only one interface connected total, or only have interface on the WAN and one interface on the LAN? You can shut down the unused interfaces on the firewall so only two are active.
--Gavin Budd
03-31-2008 08:59 AM
Please take a look at my shematic. I think it tells you more than thousand words.
Thank you!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide