Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN to dual remote endpoints

Not sure if my subject is a good decription of the problem or not.

I have an ASA 5520 at my home office and a SonicWALL NSA2400 at my remote office.  The remote office has dual internet connections and I wanted to create two seperate VPNs between the devices using each internet connection on the SonicWALL.

I know how to configure this on the SonicWALL, the problem is on the ASA 5520

OK Basic network config

Main Office

ASA Public IP

ASA Internal network (VPN source)

Remote office

Public IP 1

Public IP 2

Iternal network (VPN destination on ASA)

If I have a VPN from the main ASA to either one of the SonicWALL's public IPs everything works fine

If I create 2 VPN tounels from the main ASA, 1 to each public IP on the SonicWALL, the VPN shows as up but no traffic flows.

Thanks for any help,


Cisco Employee

VPN to dual remote endpoints


If you're planning to use same traffic selectors for both of the peers the correct way to configure this is to add two peers in "peer" statment, not configure two separate crypto map entries for same tunnel.

Only one of those should be active at a time.