I have an ASA (US-HEN) on a public IP that is a fiber based connection. Then there is a private point-to-point from the same fiber service company. Both ASA are 5510 in routed mode. The second location (US-LEX) used to have a site-to-site VPN over a DSL connection which has gone away. So now there is a private point-to-point over a /32 subnet and I'm pointing the ASA at US-LEX back to US-HEN as its default gateway. Should I put the second ASA (I'm calling this a 'stub' connection) into transparent mode as opposed to routed?
I was also thinking about configuring it with 'ip permit any any' statements to allow all of the traffic in/out and disabling NAT. Really I just need it to function like a router at this point and not so much a firewall.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...