Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2798
Views
0
Helpful
3
Replies

Key Exchange For Subnets?

Go to solution
Stephen Carville
Level 1
Level 1

‎04-12-2018 11:05 AM - edited ‎03-12-2019 05:11 AM

I received a spec sheet for a P2P VPN between an ASA 5585 and our ASA 5525 with the above requirement. AFAIK, it is not an option for the Cisco ASA. I think I've seen such an option for Checkpoint but, thankfully, we don't do Checkpoint here.

 

OTOH, I could be wrong and would appreciate someone setting me straight.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rahul Govindan
VIP Alumni
VIP Alumni

‎04-12-2018 11:22 AM

No similar concept on the ASA. ASA builds a different Security Association (SA) for every Access Control Entry (ACE) on the crypto map configured on both sides. 

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Rahul Govindan
VIP Alumni
VIP Alumni

‎04-12-2018 11:22 AM

No similar concept on the ASA. ASA builds a different Security Association (SA) for every Access Control Entry (ACE) on the crypto map configured on both sides. 

0 Helpful

Go to solution
Stephen Carville
Level 1
Level 1
In response to Rahul Govindan

‎04-12-2018 01:16 PM

That's what I thought.  Thank you.

0 Helpful

Go to solution
jasoncoxlee
Level 1
Level 1
In response to Rahul Govindan

‎03-26-2019 12:57 PM

So if asked, is this a yes or no question?!  I'm working on a P2P right now and the peer has the field on their spec sheet.  Never saw the term working with the ASA.

0 Helpful
Customers Also Viewed These Support Documents