Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

Anonymous
N/A

VPN connection with dyn IP

Hi there,

Is it possible to open a VPN Tunnel from an ASA to PIX but the PIX has a dynamic IP address?

We have some Branch offices using BT Broadband to log in to our network via VPN. Now the company wants to open VPN connections from our Headquarter to the Branches. Is that possible but I couldn't found a command in the comand reference doc.

thanks in advance

1 REPLY
New Member

Re: VPN connection with dyn IP

Hi Juergenrieger

This is not possible, you just need to configure the Remote PIX with the address

of the Central PIX, but on the Central PIX you would need to set the ISAKMP peer

with 0.0.0.0 netmask 0.0.0.0.

isakmp key address 0.0.0.0 netmask 0.0.0.0 (Central site)

isakmp key address netmask 255.255.255.255

The remote PIX must initiate the connection as this knows about the PEER where the

Central site does not, this has been configured to dynamically accept connections from anywhere knowing the wild-card pre-shared key.

Regards MJ

285
Views
0
Helpful
1
Replies
CreatePlease to create content