Site to Site VPN with Dynamic IP

Unanswered Question
Jul 16th, 2008
User Badges:

I have to deploy a site to site vpn between an 851 route and an ASA 5510, the man ssue is i dont have static IP on the wan interface of 851 route and i m using SDM and ASDM to configure the devices.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
tahequivoice Thu, 07/17/2008 - 11:47
User Badges:

That is a helpful document except it has a major flaw in it, so beware when it doesn't work. I spent two freaking days trying to understand why it wouldn't work and discovered the ACL is wrong. The source and destinations are backwards. I dont exactly remember which one, but keep it in mind when programming the ASA.

I think it is this one, this adds the routes that the client gets, and it is wrong, it is supposed to be the networks connected or behind the ASA, not the client network.

access-list Split_Tunnel_List standard permit


This Discussion