two tunnels on one outside interface

Unanswered Question
Aug 16th, 2014
User Badges:

Hello, i have asa 5505 8.2
I want to use two vpn tunnels at the same time.
One is for cisco vpn client and one for android client (l2tp)

 

In this configuration, alternately running one or another vpn

crypto ipsec transform-set FirstSet esp-3des esp-md5-hmac
crypto ipsec transform-set trans esp-3des esp-sha-hmac
crypto ipsec transform-set trans mode transport
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000

crypto dynamic-map dyno 10 set transform-set trans
crypto dynamic-map dyn1 1 set transform-set FirstSet
crypto dynamic-map dyn1 1 set reverse-route

crypto map vpn 65535 ipsec-isakmp dynamic dyno
crypto map mymap 1 ipsec-isakmp dynamic dyn1
crypto map vpn interface outside

 

 

I tried to fix by making like this:

crypto dynamic-map dyno 10 set transform-set trans
crypto dynamic-map dyn1 1 set transform-set FirstSet
crypto dynamic-map dyn1 1 set reverse-route

crypto map outside_map 65534 ipsec-isakmp dynamic dyn1
crypto map outside_map 65535 ipsec-isakmp dynamic dyno
crypto map outside_map interface outside

I attached two different crypto dynamic-map: dyno and dyn1 at one crypto 
map outside_map with different sequence numbers, the result - still at the 
same time I can not connect through the Cisco VPN Client, and with android 
phone (l2tp). Only connect via Cisco VPN Client.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion