i have a question.
I need to build an IPSec VPN using the ASA-5500 firewall, but I only have one ip-address invalid on my outside interface 192.168.x.y. This interface is connected to the Ethernet router, the provider that make a single default route to a valid address 200.140.x.y passing by the interface outside of the
How can I publish this 200.140.xy valid address for access to my VPN users?
The topology is attached.
Please help me../.
Thanks a lot
First of all, it is not Miss.. It is Mr.
For your question, from the configuration, your ISP is translating the
public IP to your ASA's inside IP. So, I don't see any issues over there.
One thing I noticed is your default gateway on the firewall pointing to .1
when the inside interface of ISP router is .4. To verify connectivity, try
on the firewall:
ssh 0.0.0.0 0.0.0.0 outside
crypto key generate rsa modulus 1024
Once above commands are entered, try to ssh to the public IP address. If you
are able to login to the ASA using the public IP, that means the public IP
is directly getting translated to ASA and you should not have any problem in
using that IP for VPN.
Hope this helps.