Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Cisco ASA site to site VPN with 1 side using a dynamic IP

I am trying to configure a site to site VPN between 2 ASA 5505 firewalls. The one site has a static IP address, so I refer to that from the other sites IP, and create the tunnel group, but I am unsure on how to refer to the site that has different IP addresses every few months. I was thinking that it would be set with a dynamic peer, but was unable to configure that or know how to. I then used the defaultRAgroup with a pre shared key, but when i do a debug, the error message indicates an xauth failure, is it possible to turn that off?

I am open to ideas and suggestions, thanks for any help.

3 REPLIES

Re: Cisco ASA site to site VPN with 1 side using a dynamic IP

Green

Re: Cisco ASA site to site VPN with 1 side using a dynamic IP

Use the defaultL2Lgroup, not RAgroup.

New Member

Re: Cisco ASA site to site VPN with 1 side using a dynamic IP

Thank you for that comment about the defaultL2Lgroup, that worked perfectly.

783
Views
5
Helpful
3
Replies