Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA 5505 ASDM VPN site-to-site wizard over existing remote access VPN

Hi guys,

Long ago, I set up a couple of ASA 5505s as remote access VPNs. I didn't use the wizard, but created them manually inside ASDM with a bit of research and mucking about.

Later this month, I'll need to take one of these existing 5505s and add a site-to-site VPN. The other end of this VPN will be a brand new 5505 at a brand new branch office. If I use the site-to-site VPN wizard in ASDM on the existing 5505, should it overwrite or delete the existing remote access VPN configuration?

Naturally, I will save the existing config before I do this, but it'd be good for me to know what to expect, since we'll be on some tight deadlines with this project.

Thanks for your help.

Jefferson Krogh

IS Manager

Kennerley-Spratling, Inc.

4 REPLIES
VIP Purple

ASA 5505 ASDM VPN site-to-site wizard over existing remote acces

You can use the wizard which won't remove your old config. But if you have configured remote-access-VPNs before, you can probably do the same for site-2-site without the wizard. Thats straight forward:

Here is an example:

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080950890.shtml

If you are running v8.3+, then you have to adapt the new NAT-style for the NAT-Exemption.

-- 
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni


--
Don't stop after you've improved your network! Improve the world by lending money to the working poor: http://www.kiva.org/invitedby/karsteni
New Member

ASA 5505 ASDM VPN site-to-site wizard over existing remote acces

Great, thanks! I haven't set up a VPN of any kind on the ASA in almost three years, so I'm rusty.

VIP Purple

ASA 5505 ASDM VPN site-to-site wizard over existing remote acces

Then enable in ASDM the previev-function and configure it with the wizard. WIth the preview you can see what the ASDM want's to send to the ASA. Perhaps then you remember ...

-- 
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni


--
Don't stop after you've improved your network! Improve the world by lending money to the working poor: http://www.kiva.org/invitedby/karsteni
New Member

ASA 5505 ASDM VPN site-to-site wizard over existing remote acces

Excellent idea! Thanks, I really appreciate the advice.

165
Views
0
Helpful
4
Replies
CreatePlease to create content