06-03-2008 03:50 PM
I am trying to configure a site to site VPN between 2 ASA 5505 firewalls. The one site has a static IP address, so I refer to that from the other sites IP, and create the tunnel group, but I am unsure on how to refer to the site that has different IP addresses every few months. I was thinking that it would be set with a dynamic peer, but was unable to configure that or know how to. I then used the defaultRAgroup with a pre shared key, but when i do a debug, the error message indicates an xauth failure, is it possible to turn that off?
I am open to ideas and suggestions, thanks for any help.
06-03-2008 04:55 PM
Take a look at this example link
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00805733df.shtml
HTH
-Jorge
06-03-2008 06:18 PM
Use the defaultL2Lgroup, not RAgroup.
06-04-2008 09:04 AM
Thank you for that comment about the defaultL2Lgroup, that worked perfectly.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide