VPN between 2 offices aswell as their current VPN to HQ possible?
I have 2 VPN's connected to my Cisco ASA 5520. These VPN's are 2 small remote offices and are using DSL lines with staic public IP's as their peer address. I have a Cisco 877 router at each office to connect them to the Cisco ASA.
These 2 offices now need to connect to each other and rather than route via the Cisco ASA can I create a VPN between the 2 offices so each Cisco 877 router has 2 VPN's - one to the HQ (Cisco ASA) and one to the other remote office?
These 2 office are based int he same country so it makes sense, out HQ is in another.
If so how? If useful I can attach one of the remote offices configs, that way I can see how the extra crypto config will look and how I can route the interested traffic to the right VPN?
Re: VPN between 2 offices aswell as their current VPN to HQ poss
do the remotes have static IP's? if so, you can easily create another site2site vpn on both routers.
if either have dynamic IP's, you will probably need to go with dmvpn.
or you may choose to go with dmvpn anyway. it requires a bit more up front configuration as you migrate to it, but if you plan on adding more remotes in the future, it save you time adding it to your vpn infrastructure.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...