Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

Dual-homed L2L and Remote-Access Tunnels


We're desinging a Network, for which I need some expert advise on.

We need to build two tunnels from a Remote ASA, to a Hub ASA, and a VPN Concentrator (for redundancy). Basically, we're thinking of doing an L2L VPN between the two ASAs and a Remote-Access VPN between the ASA and the VPN Concentrator.

I have the following questions:

- I'm not sure if this is a feasilbe design to begin with, to have the same ASA create a Dynamic Tunnel (Remot Access) to a VPN Concentrator, and a regular L2L Tunnel to an ASA.

- If the above setup can be configured, Is there a way the Client ASA can hold the Remote Access Tunnel (to the VPN Conc.) down as long as the L2L Tunnel to the Hub ASA is up and running?

This is something which is still in the 'concept' phase, so any advice in this regard would be highly appreciated.

Thanks in advance!