Solved: Thanks a lot Marius

mahesh18 · ‎02-20-2016

Hi Everyone,

I configured and converted ASA from 8.2 to 9.1

In 9.1 i do see config like

asdm location 10.0.0.0 255.0.0.0 Inside

Need to know should i remove this config?

Also what is use of this config?

Secondly in 8.2 i have this config

vpn-tunnel-protocol IPSec l2tp-ipsec

In 9.1 i have this config

vpn-tunnel-protocol ikev1 l2tp-ipsec

Need to know any difference in these commands?

Regards

MAhesh

Marius Gunnerud · ‎02-20-2016

The ASDM location is a command that the ASDM adds and is used internally by the ASA. If you have the commands http server enable and http <ip address> <subnet> Inside. Then you are ok to remove the location command.

There is no difference in what the command does. They both specify the same allowed tunneling protocol under the group-policy. Since we can now configure bot IKEv1 and IKEv2 we need a way to define which of these is being used. So that is why the IPSec keyword is replace with either IKEv1 (as in your case) or IKEv2.

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts

View solution in original post

Marius Gunnerud · ‎02-20-2016