ASA Firewall

ushakiran · ‎05-04-2016

Dear All,

how to configure ASA firewall and site to site vpn methodologies.

Dinesh Moudgil · ‎05-04-2016

Hello

Here are few documents for your reference:-

http://www.cisco.com/c/en/us/support/security/asa-5500-series-next-generation-firewalls/products-installation-and-configuration-guides-list.html

http://www.firewall.cx/cisco-technical-knowledgebase/cisco-firewalls.html

http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/100678-l2l-asa5505-config.html

Regards,
Dinesh Moudgil

P.S. Please rate helpful posts.

Cisco Network Security Channel - https://www.youtube.com/c/CiscoNetSec/

James Leinweber · ‎05-04-2016

If you need a very basic config, you can start with the ASDM Device setup wizard.

To get a site-to-site VPN set up I suggest using the ASDM GUI; the intricacies of tunnel-group settings are hard for anyone but experts to get right at the command line. Assuming you are using IPsec tunnels (IP protocol 50 "ESP"), navigate to Configuration|Site-to-Site VPN, enable IKEv2 and/or IKEv1 on the appropriate interface in the top of the pane, typically outside, click "add", and fill in dialog box. Don't forget to click "Apply" to send the commands and "Save" to make them permanent. I like Tools|Preferences|Communications "preview commands before sending them to the device" = on so I can see what it's doing. At a command line (via SSH) "show crypto ipsec sa summary" will help you see if the tunnel is coming up correctly.

For background info, start with Dinesh's links.