Can you explain in more detail what you are trying to achieve? In a usual MPLS VPN data service provided to you by your ISP, you do not see any MPLS - it is only inside the ISP/s network - so you can treat the existing VPN simply as a pure IP network. Setting up an ASA-provided IPsec tunnel should not be a problem.
Please try to be more specific as to what posibition should the ASA be - the C or CE router? - and also, on what device should that tunnel terminate - on another CE router, or a different one?
Apology for not being clear (MPLS is not my expertise). Basically, we have requested our hosting provider to create an IPSec tunnel between two sites. Our end is ASA5520 but the other end (hosting site)seems to be an MPLS VPN based on the configuration they have sent to us that is why I asked whether it is possible to terminate an IPsec VPN coming from ASA5520 into an MPLS VPN router interface. Do I make sense now? Many thanks for the reply.
Would it be possible for you to post here the configuration your ISP has given you for the remote end? It would probably be more clear then.
The usual practice with MPLS VPNs is that only provider's routers are running MPLS. The internal routers are called P (provider), the edge routers connecting to customers are called PE (provider edge). Both P and PE are managed by ISP and they run MPLS. The routers in customer's posession are similarly called CE (customer edge) and C (customer) but none of customer routers run MPLS. Sometimes a CE router can also be managed by ISP, it depends largely on the type of support contract.
I am basically trying to find out what is the type and present configuration of the other endpoint - whether it is an PE (I strongly doubt this!), CE or C router. The configuration that your ISP has given you might help to solve this question.
This should work without any problems. The configuration your hosting provider sent you simply shows that he is creating a separate routing table (the VRF vs319776) for you but the remainder of the configuration is mostly usual, except that all crypto configuration on his part has to be tied to the specific VRF. You should configure your ASA as usual without any special configuration regarding MPLS or any of this stuff.
1. Introduction Internet security is important with the increasing
attacks that are happening every day. Many internet and browsing
security solutions exist, but some are not very easy to use or maybe the
question is how can I enable them? In this referen...
Cisco Software Manager Server API Guide This document describes the
programmatic interfaces, RESTful APIs, which are supported by Cisco
Software Manager Server (CSM Server). Overview CSM Server supports a set
of finite RESTful APIs. The first step to use ...
If you are using Cisco's new linux-based Cisco Software Manager server,
then you probably want to make sure there is a startup service for
it.I'll assume that you've already installed the CSM server on a
systemd-based linux system. The commands given belo...