Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1124
Views
3
Helpful
2
Replies

FTD VPN Policy for ezvpn hardware clients

MauryJ
Level 1
Level 1

‎04-20-2018 05:46 AM

Hello,

We are setting up an ASA-5516X running FTD 6.2.2, using FMC, and have been able to setup a VPN policy for AnyConnect clients.   We have remote 800 and 880 series routers that are configured to connect to our old ASA using ezvpn in network extension mode, and with a group preshared key.   The routers  have dynamic public IP addresses.   Is it possible for FTD to be configured to accept VPN connections from these routers?

The VPN connection on the routers are configured as similar to below:

crypto ipsec client ezvpn crws-client

connect auto

group Somegroup key Somekey

mode network-extension

peer (peer IP 1)

peer (peer IP 2)

username routerusername password routerpassword

xauth userid mode local

Thank You

Labels:
2 Replies 2

tauseef.khan@scc.ccom
Level 1
Level 1

‎04-20-2018 06:15 AM

Latest version of FMC is 6.2.3 and I don’t think ezvpn or hardware clients are supported nor does the Clientless vpn.

You might need to consider ipec site to site vpn in hub and spoke topology.

I don’t think ezvpn is on the road map either.

MauryJ
Level 1
Level 1
In response to tauseef.khan@scc.ccom

‎04-24-2018 06:02 AM

Hello Tauseef,

Thank you for the response and suggestion.  You're probably right, I did some searching and could not find anything on ezvpn.   Its probably time for us to replace those remote routers anyway.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card