I have Cisco ASA5520 that is facing ISP with private IP address. We have no router and how to route IPSec VPN accross the internet?
Firewall outside Gi0 interface 10.0.1.2 >>>>>ISP 10.0.1.1 with security-level 0
Firewall inside Ethernet0 interface 192.168.1.1 >>>>LAN switch 192.168.1.2 with security-level 100
I have public IP block 126.96.36.199/28
How can I use the public IP address to create IPSec VPN tunnel between two sites accross the internet?
should I assign one public IP address on the Gig1 inside interface with security-level 100 and how to apply the inside to route on this interface?
If I configure >>firewall inside Gi1 interface ip address 188.8.131.52/28 with security-level 100. How do I make sure VPN traffic route through this interface accross the internet?
I am used to assigning public IP address to outside interface of the firewall and private IP address to inside interface.
Please help with configuration examples and advise.