I'm stuck in a little bit of a problem here, maybe someone can help me.
I have on central office network with a PIX515E, this firewall acts as an Easy VPN Server.
on the other side I have multiple ASA5505 acting as Easy VPN Clients in NEM Mode which are dialing in.
Behind all these ASA's there are one or two server appliances.
The goal here is that we can roll out all these server appliances each with one ASA's onto the internet and they are automatically calling home and establishing a VPN, so we can manage them from our office.
So far it's not that complicated, but the tricky thing is that all the server appliances we want to mange have exactly the same IP on their management interface.
Is there the possibility to mask or NAT the IP on the mgmt interface of the server towards the easyVPN connection per username?
Maybe it doesn't have to match with the username, if it would be possible to do this hardcoded in the ASA5505 it already would help a lot.
I've attached a quick visio picture of the layout.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...