ASA Behind Firewall

Answered Question
Oct 30th, 2008

I have a user with a requirement to user a site-to-site VPN between their house and the main campus. Currently their internet is via a cable modem and a Linksys wireless router using private IP space on the inside. Can the ASA 5505 work in site-to-site VPN mode behind their existing router?? Or does it have to become the front-end to the internet for that user?? If it can work behind the router, can someone tell me the general steps to accomplishing this. Thank you very much.

I have this problem too.
0 votes
Correct Answer by vmoopeung about 8 years 1 month ago

Yes ASA 5505 can work behind the exixting Linksys router. please make sure of the following:

1) The isakmp policies match on the Linksys and ASA.

2) The crypto access lists reciprocate for both routers.

3) The crypto maps are properly defined and placed on the correct interface.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
vmoopeung Wed, 11/05/2008 - 07:13

Yes ASA 5505 can work behind the exixting Linksys router. please make sure of the following:

1) The isakmp policies match on the Linksys and ASA.

2) The crypto access lists reciprocate for both routers.

3) The crypto maps are properly defined and placed on the correct interface.

Actions

This Discussion