We are replacing cisco concentrators with ASAs to support site-to-site VPNs. The concentrator(s) are currently deployed across DMZs (public interface on less secure DMZ and private interface on more secure DMZ). Is it possible to configure the ASA (will be in failover mode) in the same fashion? I have been unable to find any examples/discussion of this sort of design. Thanks for your input, Anne
I am not sure I understand how your VPN is currently set up and how you want it to behave...could you explain in more detail how this is set up? please add a network diagram too as to how this all connects together.
Please remember to select a correct answer and rate helpful posts
Please remember to rate and select a correct answer
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...