ASA 5510 hosting many L2L ipsec tunnels - Add EZ VPN Client?

Unanswered Question
Jan 7th, 2009
User Badges:

So here is my question:

I have an ASA 5510 in my data center that is the head end for 35 or so L2L IPSec tunnels. Remote sites have Cisco 2800 series routers. I would like to now send an ASA 5505 out to a SOHO site that has dynamic IP addressing from the ISP and be able to run a PC and a 7960 IP Phone in that SOHO. The SOHO needs to be able to make 4-digit phone calls and generally have PC connectivity to all my branches as well as back to the data center.

I have started to look into this and now I am thoroughly confused. EZ VPN? L2L? NEN? How would you go about achiving this type of configuration?



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
mvsheik123 Wed, 01/14/2009 - 13:24
User Badges:
  • Gold, 750 points or more


My choice in this case is EZVPN with NEM enabled.Hairpin config helps in the PC to reach to other L2L destinations. Also easy to manage the remote end (less config).




This Discussion