i am having one scenario,
i am having one static ip in the headoffice and i have 4 locations of site office all site offices are having dynamic ip.
i created one site to site vpn betwen HO to 1 site office working perfect
but i am creating second profile in HO ASA for 2 site office the config i created is not working.
i am using HO ASA 5520 and branches 5505 .all site offices are ADSL connection
i am attaching my HO config
can u just assit how to config multiple dynamic profile in the HO
That's only a suggestion....
You want to get the 3 dynamic sites connected with the HO,right?
As the branch office have dynamic ip's, you need to use the DefaultL2LGroup Profile (the same shared-key for all three BO).
The crypto-map has to be dynamic with the right soure/destination net configured. Exempt NAT with the same source/destination net as well.
Configured as a normal Site-2-Site VPN with the HO. The IPSEC-Wizard is very helpful.
To get connected from HO to BO, the branch office has to initate the tunnel. After that, you have a full functional site-2-site VPN.