×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.
Jouni Forss Wed, 01/15/2014 - 04:32
User Badges:
  • Super Bronze, 10000 points or more

Hi,


If you are asking that can the VPN devices public IP address be used as the source IP address for traffic in the actual L2L VPN connection then the answer is yes.


Even though we usually dont do this we still have such setups in on some customers.


Hope this helps


- Jouni

Jeferson Palma Wed, 01/15/2014 - 04:48
User Badges:

The scenario is that in one side I have a ASA firewall, where I don´t need to use the same ip to close the IPSec and originate the traffic. But we are closing the VPN with a Linux server directly, where it has only one IP, a public IP. So, in this Linux server I need to use this unique IP to establish the IPSec VPN and to originate the traffic of the application. I need to know if it is possible.

Jouni Forss Wed, 01/15/2014 - 05:18
User Badges:
  • Super Bronze, 10000 points or more

Hi,


If this was a question regarding the ASA having the single public IP address for both peer IP and source in Encryption Domain then I could say it would work.


I would expect it to work with the Linux server also but I can't say for sure and I am not sure if anyone else can say either unless they have used such setup.


Might get an answer easier on some discussion more focused on Linux.


- Jouni

colinlim.au Mon, 09/01/2014 - 17:06
User Badges:

Hi,

I can confirm that it works.  We have configured a standalone Linux server with openswan connecting with the ASA in a Site-to-Site VPN configuration. 

Colin

purva.kate Tue, 09/02/2014 - 19:41
User Badges:

For Site-to-Site VPN.

Can you tell me,if we can use the Public IP address (Outside interface ip address on which Tunnel is terminating) in the Encryptino Domain as Source ?

swapnildongre89 Wed, 06/17/2015 - 01:10
User Badges:

Hi,

 

I have the same question which Purva.Kate has. Can anyone please confirm if it works or not?

 

For Site-to-Site VPN.

Can you tell me,if we can use the Public IP address (Outside interface ip address on which Tunnel is terminating) in the Encryptino Domain as Source ?

 

Actions

This Discussion