05-26-2008 11:28 AM - edited 03-11-2019 05:50 AM
Using DefaultL2LGroup tunnel-group, I am able to bring up a L2L tunnel from an IOS Cisco871 hub that is dynamically addressed to a static spoke ASA running 8.x. Authentication is via PSK. How can I use a tunnel-group other than DefaultL2LGroup? It seems like I would have to pass a tunnel-group name from the IOS spoke to the ASA during Phase 1, but I can't see how to do that.
Thanks.
05-26-2008 01:05 PM
the tunnel group name normally for L2L is just the IP of the remote. since the remote is dynamically assigned, you will have to create a dynamic crypto map.
here ya go:
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080809222.shtml
05-26-2008 03:01 PM
Thanks for the link, but that was for EZ VPN. I have a dynamic map. It actually works. I just want to use a TG other than DefaultL2LGroup
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide