11-13-2013 06:32 AM
I have a client with multiple remote sites with each site having a L2L tunnel back to HQ.
They've made a decision to go with Broadband at a couple of the smaller sites, and they aren't getting static ip's
So the outside address on some of these remote firewalls will be dhcp. The HQ end is a Cisco 5510. Am I going to have to make those few dhcp sites aggressive mode? Or is there still a way to do a main mode tunnel with the far end using dhcp?
Thanks.
Solved! Go to Solution.
11-16-2013 03:31 PM
I do not believe it is a requirement to use agressive mode. Are the remote sites ASAs also?
For ASA static to dynamic IP L2L vpn:
for ASA static to Router dynamic IP L2L vpn:
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080b3d511.shtml
Please rate all helpful posts.
11-16-2013 03:31 PM
I do not believe it is a requirement to use agressive mode. Are the remote sites ASAs also?
For ASA static to dynamic IP L2L vpn:
for ASA static to Router dynamic IP L2L vpn:
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080b3d511.shtml
Please rate all helpful posts.
11-18-2013 06:29 AM
remote ends are sonicwalls. i was only able to bring up the connection in aggressive mode which then got me thinking. before I wasted too much time I wanted to ensure it wasn't a limitation on the asa side. Thanks for the links! very helpful.
11-18-2013 07:17 AM
Glad I could help
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: