Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
257
Views
0
Helpful
1
Replies

EZVPN and remote DHCP

sbrooke
Level 1
Level 1

‎03-11-2009 08:32 AM

It seems that in order to enable dhcprelay on the ASA you have to point the relay out the outside interface. Can anyone say for sure if this traffic is still getting encrypted when using the ASA as an EZVPN NEM client?

I haven't had a chance to test it yet...does that configuration work?

Labels:
0 Helpful
1 Reply 1

Ivan Martinon
Level 7
Level 7

‎03-12-2009 08:33 PM

I don't think this will work, typically ezvpn creates an SA from the outside of the client to the outside of the server, but in this case I am not sure it and since this is not affected by split tunnel or any config I doubt it will work. Reason you need to make sure that an SA is created from outside of the ASA to the DHCP server, not the EZVPN server. Your most feasible solution would be a normal dynamic to static and yet on this one you will find problems when the ip address changes.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents