Whats the difference between the site-to-site and the internet VPN. I do know that the internet vpn is for remote access and the site-to-site is to connect the branch office to the main office. But I would want to know the exact differece in configuring these 2 vpns.
There is no such term called "Internet VPN". There are two types.
1)Remote Access VPN (RA)
In this scenario, clients connect to VPN endpoint individually via VPN Client software
2)Site-To-Site VPN (L2L)
In this scenario, two VPN endpoints establish a tunnel between them. In most cases, endpoints have static IPs
The main difference in configuration side between these two, RA VPN clients are not static like a remote site. All clients are individual and dynamic, they have changing IPs. Thats why you should define dynami crypto map entries for RA VPN. Following is an example crypto entry for RA VPN
In L2L VPN, you should specify the remote peer IP, the traffic which should flow through tunnel (match address acl). Another thing in L2L VPN to keep in mind is, tunnel-group name and the remote peer IP address must be the same. If you have a remote peer IP of 184.108.40.206, then you should define tunnel-group 220.127.116.11 type ipsec-l2l
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...