I have a ASA 5510 at our corporate HQ that has one site to site VPN. I need to add 6 additional site to site VPN's to this ASA for our remote branches. How can I add them without affecting the existing site to site VPN? The 6 site to site VPN's will all have the same settings however these settings are different from the existing site to site that I already have set up. How can I set it up so the 6 additional VPN's use their own crypto map and all use the same settings?
Thanks
Hello,
All of them can use the same crypto isakamp policy and same crypto ipsec setup but on the crypto map configuration you should change the ipsec peer and the crypto ACL.
As you also know you can only have one crypto map per interface so what you are going to do is just to add a new entry for the different site to site tunnels.
And finally create a tunnel-group for each remote site with their respective pre-shared key
Regards,
Any other question..Sure.. Just remember to rate all of my answers.
Julio