Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Gatta rework the remote VPN groups

Hey guys,

So I've been tasked with reworking the VPN groups and what I'd like to do is use a seperate subnet all together.

Right now everyone is getting an IP address of 10.x.x.x

I'd like to put everyone into a 172.x.x.x subnet of there own depending upon group.

So my question is actually about routing. I'm running OSPF and am wondering if I need to make an entry for the network or if there is some sort of route injection that will take place. It's an ASA 5510 by the way.

If anyone has some good docs that would much appreciated.

Thanks.

1 REPLY

Re: Gatta rework the remote VPN groups

You can do 1 of 2 things in my opinion:-

1) Have a static route in the closest layer 3 router point to the ASA for the 172.x.x.x subnet - then redistribute the static route into OSPF.

2) Configure the ASA to be part of the OSPF process:-

http://www.cisco.com/en/US/customer/products/ps6120/products_configuration_example09186a00809a417a.shtml

HTH>

165
Views
0
Helpful
1
Replies