06-03-2008 03:50 PM
I am trying to configure a site to site VPN between 2 ASA 5505 firewalls. The one site has a static IP address, so I refer to that from the other sites IP, and create the tunnel group, but I am unsure on how to refer to the site that has different IP addresses every few months. I was thinking that it would be set with a dynamic peer, but was unable to configure that or know how to. I then used the defaultRAgroup with a pre shared key, but when i do a debug, the error message indicates an xauth failure, is it possible to turn that off?
I am open to ideas and suggestions, thanks for any help.
06-03-2008 04:55 PM
Take a look at this example link
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00805733df.shtml
HTH
-Jorge
06-03-2008 06:18 PM
Use the defaultL2Lgroup, not RAgroup.
06-04-2008 09:04 AM
Thank you for that comment about the defaultL2Lgroup, that worked perfectly.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: