I need to do configure a VPN between a branch (ASA5505) and a HO (VPN concentrator).
The IT gaved the following info for the configuration in the branch office,
USERNAME and PASSWORD
GROUPNAME and PASSWORD
and Peer Address.
So i deduced that they need an EASY VPN to be configured on the ASA5505
so i configured it with the following commands:
vpnclient server x.x.x.x
vpnclient mode client-mode
vpnclient vpngroup GROUPNAME password ********
vpnclient username branchvpn password ********
vpnclient ipsec-over-tcp port 10000
The VPN connected successfully and there is ping from LAN to LAN
but the client in the HO is telling me the following:
Other remote locations except your connection are having different IP range.
So when you are connecting from your branch to the HO VPN server, your IP subnet (i.e. 192.168.0.0) should publish in the network instead of taking the IP 172.17.0.0 from the VPN server as we have OSPF configured in our VPN Server.
172.17.4.0 Range is set for the VPN users.
Can any one advise what type of connection could be configured on the ASA, taking into the consideration the input that i was given and the requirement?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...