Site to Site Doc Clarification, please

Unanswered Question

In the following doc:

http://www.cisco.com/en/US/docs/security/asa/asa80/getting_started/asa5505/quick/guide/5505GSG.pdf

Page 150 is not clear. In the example, they have test for local networks and 209.165.200.225 for remote. I am not sure what is test? Base on the example diagram on page 140, would it be 10.10.10.0/24 for the entry under local networks and 10.20.20.0/24 for remote networks? or 209.165.200.226 for local netwoks and 209.165.200.236 for remote networks?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jon Marshall Wed, 02/25/2009 - 10:19

Patrick

Your'e not the only one who is confused :-). I generally don't use ADSM rather i use the CLI but the example still doesn't make any sense.

The local and remote networks are 10.10.10.0/24 and 10.20.20.0/24 so i can only assume that this is a mistake in the documentation.

Jon

bmcginn Wed, 02/25/2009 - 16:20

Hi there,

In security appliance 1, the 'test' would mean 10.10.10.0. The remote network should be 10.20.20.0.

As the outside of both devices are on the public network, neither traffic from 209.165.200.226 nor 209.165.200.236 should be encrypted.

The screen looks like it is defining the interesting traffic for the tunnel, and should not incorporate traffic from either outside address.

Actions

This Discussion