Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VPN ASA 5510

HI,

One of my clients has a network with a first line of defense and a second line of defense. The first line of defense are cisco asa 5510s. Now we want to create a lan to lan vpn connection and terminate it on the second line of defense. Is it possible to create a vpn connection on the public adres on the outside of the asa and nat it to a private ip addres from the second line of defense. Is the tunnel encrypted till the second line of defense? Do i need to create a new vpn tunnel with the second line of defense?

Best regards

Jorg

1 REPLY

Re: VPN ASA 5510

Jorg,

Yes it is possible to NAT a VPN connection.

If you want to have the tunnel secure all the way to the second line of defense - then create the VPN tunnel directly to that device, no need to terminate the tunnel on the 1st line ASA's.

HTH.

122
Views
0
Helpful
1
Replies
CreatePlease to create content