Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
438
Views
0
Helpful
2
Replies

Dynamic IOS to static ASA 8.x, how to use other than DefaultL2LGroup?

kbyrd
Level 2
Level 2

‎05-26-2008 11:28 AM - edited ‎03-11-2019 05:50 AM

Using DefaultL2LGroup tunnel-group, I am able to bring up a L2L tunnel from an IOS Cisco871 hub that is dynamically addressed to a static spoke ASA running 8.x. Authentication is via PSK. How can I use a tunnel-group other than DefaultL2LGroup? It seems like I would have to pass a tunnel-group name from the IOS spoke to the ASA during Phase 1, but I can't see how to do that.

Thanks.

Labels:
0 Helpful
2 Replies 2

srue
Level 7
Level 7

‎05-26-2008 01:05 PM

the tunnel group name normally for L2L is just the IP of the remote. since the remote is dynamically assigned, you will have to create a dynamic crypto map.

here ya go:

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080809222.shtml

0 Helpful

kbyrd
Level 2
Level 2
In response to srue

‎05-26-2008 03:01 PM

Thanks for the link, but that was for EZ VPN. I have a dynamic map. It actually works. I just want to use a TG other than DefaultL2LGroup

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card