Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

ASA Remote VPN DHCP or Address Pool

I am running a pair of 5520 ASA devices in a load balancing configuration. I have multiple Remote VPN groups using these boxes and would like to use DHCP to hand out an IP address to all the groups but one. However, in the group configuration window for assigning IP addresses it says the change is a global change and not just for the group. The choices are Authentication Server, DHCP, or IP Address pool. The box will cycle through the choices until an address is found. Is there a way to configure a group to use an IP Address pool while all other groups are on DHCP. As I understand it the DHCP rule will be used before the IP address pool globally. Thanks for your ideas.

1 REPLY

Re: ASA Remote VPN DHCP or Address Pool

Yes - in your configuration:-

1) create an IP address pool

ip local pool testme 10.0.2.1-10.0.2.254 mask 255.255.255.0

2) in the ra group configure the ip address pool

tunnel-group myremotevpntest general-attributes

address-pool testme

HTH>

432
Views
0
Helpful
1
Replies
CreatePlease to create content