VPN termination

Unanswered Question
Mar 11th, 2009

Hi all

In one of our customer network,ip addres between ASA outside and Internet router is private ip and the Public ip range from Service provider is routed to Firefall outside (private IP).In this scenario is it possible to create L2L VPN and Remote access VPN on ASA?.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
celiocarreto Wed, 03/11/2009 - 01:38


vpn should be no problem. Your ISP has to forward ports: udp/500, udp/4500 and ESP protocol.

I have this scenario in place.

Regards, Celio

anva12345 Wed, 03/11/2009 - 01:47

Thanks Celio for response

But where should i configure Publc IP for the VPN(peer address for remote branch).

celiocarreto Thu, 03/12/2009 - 07:16


I don't understand your question.

On the ASA you configure the peer-ip with "tunnel-group X.X.X.X type ipsec-l2l" using the public ip address.

Regards, Celio

anva12345 Thu, 03/12/2009 - 07:27

Hi Celiocarreto

I am not talking about our end.Since our Firewall outside ip is private range what could be the peer end IP for the remote branch.?


This Discussion