We're desinging a Network, for which I need some expert advise on.
We need to build two tunnels from a Remote ASA, to a Hub ASA, and a VPN Concentrator (for redundancy). Basically, we're thinking of doing an L2L VPN between the two ASAs and a Remote-Access VPN between the ASA and the VPN Concentrator.
I have the following questions:
- I'm not sure if this is a feasilbe design to begin with, to have the same ASA create a Dynamic Tunnel (Remot Access) to a VPN Concentrator, and a regular L2L Tunnel to an ASA.
- If the above setup can be configured, Is there a way the Client ASA can hold the Remote Access Tunnel (to the VPN Conc.) down as long as the L2L Tunnel to the Hub ASA is up and running?
This is something which is still in the 'concept' phase, so any advice in this regard would be highly appreciated.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...