Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
926
Views
0
Helpful
1
Replies

ASA Remote VPN DHCP or Address Pool

JHaynes4
Level 1
Level 1

‎12-15-2008 06:34 AM

I am running a pair of 5520 ASA devices in a load balancing configuration. I have multiple Remote VPN groups using these boxes and would like to use DHCP to hand out an IP address to all the groups but one. However, in the group configuration window for assigning IP addresses it says the change is a global change and not just for the group. The choices are Authentication Server, DHCP, or IP Address pool. The box will cycle through the choices until an address is found. Is there a way to configure a group to use an IP Address pool while all other groups are on DHCP. As I understand it the DHCP rule will be used before the IP address pool globally. Thanks for your ideas.

Labels:
0 Helpful
1 Reply 1

andrew.prince
Level 10
Level 10

‎12-19-2008 11:10 AM

Yes - in your configuration:-

1) create an IP address pool

ip local pool testme 10.0.2.1-10.0.2.254 mask 255.255.255.0

2) in the ra group configure the ip address pool

tunnel-group myremotevpntest general-attributes

address-pool testme

HTH>

0 Helpful
Customers Also Viewed These Support Documents