Site to site VPN behind dsl router

Unanswered Question
Jul 23rd, 2009
User Badges:

Hi,


im searching for solution to my problem with vpn connection.


On one site i have ASA on other site is a dsl line with d-link router and cisco 871 router. Scheme is in attachement.


I need to setup site-to-site ipsec VPN between my cisco 871 (ethernet WAN/LAN) and ASA.


I can`t switch D-link to transparent mode (not supporting). Is there a way how to create a VPN connection?


Thanks.



Attachment: 
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Roman Rodichev Thu, 07/23/2009 - 05:14
User Badges:
  • Gold, 750 points or more

Refer to this article:


http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00807ea936.shtml


In addition to what's explained in the article, you will be using NAT-T (nat traversal) for IPSEC. It allows for the dynamic client to sit behind NAT. Note that the PIX configuration in the article does not refer to the public or private IP of the client IOS router.


ASA has NAT-T enabled by default

IOS has NAT-T enabled by default since 12.2(13)T


Regards,

Roman

Actions

This Discussion