Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
483
Views
0
Helpful
1
Replies

ASA with Multiple dynamic L2L VPN

Go to solution
battanc
Level 1
Level 1

‎01-28-2014 01:38 AM

I have an ASA 5510 as VPN Concentrator, used for about 30 L2L-VPNs.

I need also some L2L-VPN with dynamic remote peer.

While the configuration for a single dyn-VPN is quite simple (as described in several examples), how can I configure the ASA in the case of many dyn-VPNs ?

Basically, all the dyn-VPN should use the same PSK (the one of DefaultL2LGroup).

But using "aggressive mode" on the remote peer, I could use a different PSK for each dyn-VPN:

tunnel-group ABCD ipsec-attributes

pre-shared-key *

Is this configuration correct ?

Best regards

Claudio

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jouni Forss
VIP Alumni
VIP Alumni

‎01-28-2014 02:49 AM

Hi,

Maybe the solutions provided in the following document might also be an option for you to configure multiple dynamic L2L VPN connections on the ASA

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a0080bc7d13.shtml

Hope this helps

- Jouni

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Jouni Forss
VIP Alumni
VIP Alumni

‎01-28-2014 02:49 AM

Hi,

Maybe the solutions provided in the following document might also be an option for you to configure multiple dynamic L2L VPN connections on the ASA

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a0080bc7d13.shtml

Hope this helps

- Jouni

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents