Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Site-to-Site VPN and AnyConnect VPN on the same device using IKEv2

Hello All,

I have 2 ASA5505's connected through a site-to-site using IKEv1 and IKEv2.

Recently, I ran through the wizard to configure the AnyConnect software which looks like it changed my IKEv2 from:

>> crypto ikev2 enable outside

to

>> crypto ikev2 enable outside client-services port 443

>> crypto ikev2 remote-access trustpoint TrustPoint0

Now, my site-to-site connection will only come up using IKEv1.

Is there a way to have both the Site-to-Site and the AnyConnect VPN connections use IKEv2?

Everyone's tags (4)
1 REPLY

Site-to-Site VPN and AnyConnect VPN on the same device using IKE

Sure you can change them, please follow the example below, please try this off production hours.

group-policy your-group-name attributes

vpn-tunnel-protocol ikev2

tunnel-group 204.x.x.x ipsec-attributes

ikev2 pre-shared-key *

Hope that helps.

thanks

548
Views
0
Helpful
1
Replies
CreatePlease login to create content