I have a user with a requirement to user a site-to-site VPN between their house and the main campus. Currently their internet is via a cable modem and a Linksys wireless router using private IP space on the inside. Can the ASA 5505 work in site-to-site VPN mode behind their existing router?? Or does it have to become the front-end to the internet for that user?? If it can work behind the router, can someone tell me the general steps to accomplishing this. Thank you very much.
Yes ASA 5505 can work behind the exixting Linksys router. please make sure of the following:
1) The isakmp policies match on the Linksys and ASA.
2) The crypto access lists reciprocate for both routers.
3) The crypto maps are properly defined and placed on the correct interface.