SA520- IPSec VPN - Multiple local /remote subnets?
I'm trying to setup an IPSec tunnel between ASA5520 and a SA520. I have multiple subnets (interesting traffic/protected networks) on both locations. On SA 520, I don't see an option to define multiple subnets for local and remote pool under "VPN Policies" screen. Because of that, the tunnel fails during Phase 2 negotiation (mismatching subnets).
Is there a way to define multiple subnets on SA520 or is it limited with one subnet?
Re: SA520- IPSec VPN - Multiple local /remote subnets?
Thank you for the response. The subnets are not contiguous. I attempted to supernet them and the link established but no data transfer(which I think is an ACL issue that can be handled later). Unfortunately, I cannot go for a wider range on those non contiguous subnets.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...