Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1026
Views
5
Helpful
2
Replies

Can ASA IPSEC tunnel be terminated on DMZ interface, if peered to outside int

mmertens
Level 1
Level 1

‎02-24-2010 11:49 AM - edited ‎02-21-2020 04:31 PM

If I have an outside company whose IPSEC tunnel is peered to the ASA outside interface, can I place the "crypto map interface" command on a DMZ interface and have the ASA successfully peer to the outside interface and provide connectivity to the DMZ interface? In essence will this work, or do I need the "crypto map interface" command on the same interface/IP address as where the remote side is peered to?

THANKS!

Labels:
0 Helpful
2 Replies 2

Yudong Wu
Level 7
Level 7

‎02-24-2010 10:26 PM

Yes, you need the "crypto map interface" command on the same interface/IP address as where the remote side is peered to.

mmertens
Level 1
Level 1
In response to Yudong Wu

‎02-25-2010 04:22 PM

Thanks Kevin.

0 Helpful
Customers Also Viewed These Support Documents