Ok, thanks below is the remainder. I was told that you have to use Easy VPN between ASA 5505 and 5510 in this scenario. Again, the scenario is this. I have a 5510 whose outside interface is connected to a Bell hot spot (temporary until circuit arives) using DHCP which changes a lot. I need to do L2L VPN to an ASA 5505 that is normal config, static outside public IP etc. Both have the same dynamic crypto config. I am not including NAT info as it works fine usin packet trace. Alos, from 5505 if I capture debug and get outside hot spot IP and setup a static L2L it works fine ... well, for a while until the IP changes. so Natting and L2L has been proven out.
access-list 5505 extended permit ip 10.x.0.0 255.255.0.0 10.x.0.0 255.255.0.0
crypto dynamic-map mobile 1 set ikev1 transform-set 3DES
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...