ASA 5505 to Netvanta site-site VPN but NV is dynamic?

Unanswered Question
Mar 26th, 2009

I am trying to set up a site-site VPN between two sites. The Cisco ASA 5505 has a static public IP and the site with an Adtran router has a dynamic IP on the public interface. I have successfully gotten site-site working many times when both are static, but I have never done one where the initiating site is dynamic. How do you configure this on the ASA? I tried to put 0.0.0.0 as the peer IP address in the site-site vpn wizard, but it won't take it. If I try it at a command line, it takes it, but doesn't show it in the config.

Is there a proper procedure to configure this? I understand you can possibly do it with Cisco EasyVPN, but I would like to avoid using that if at all possible.

Thanks.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
jms112080 Mon, 06/01/2009 - 10:23

I'm trying to accomplish the same thing with an ASA 5505 and another VPN device. I've followed the doc you provided and the ASA always tries to match the connection to the "DefaultRAGroup" , it never matches the L2L group I created. Any idea what I'm doing wrong?

Richard Burts Mon, 06/01/2009 - 14:04

Jeremy

Did you configure this with a dynamic map or with peer 0.0.0.0? The message indicates that your ASA is treating this as Remote Access instead of Lan to Lan.

Perhaps it would be easier to figure out the problem if you would post the config.

HTH

Rick

Actions

This Discussion