06-07-2019 09:31 AM - edited 02-21-2020 09:12 AM
How many tunnels IPSec is able to do ASA 5545?
I have a doubt regarding how many tunnels IPSec I can do with ASA 5545, I mean I have an outside interface on ASA connect to interface router. In this only link how many tunnels could i do?
For example:
ASA Outside 10.10.10.10---------------------------------10.10.10.11 Router Interface.
Only one?
Regards!
06-07-2019 10:30 AM
Hi,
The ASA 5545-X supports 2500 VPN tunnels, reference here. Even though you only have 1 IP address, the sequence number used on the crypto map is used to distinguish between the different peers. So I don't see why in your scenario you could not configure up to 2500 VPN tunnels.
HTH
06-07-2019 10:34 AM
Hi RJI!
It is not that I can not, I have not yet implemented it, I only had the doubt, but when you say 2500 tunnels do you mean tunnels or sessions?
06-07-2019 10:47 AM
06-08-2019 05:28 AM
Sessions is generally used to refer to remote access VPN. Since almost nobody still uses the old IPsec IKEv1, we generally equate sessions with SSL VPN sessions for remote access clients. In that case there is a separate limit and you require AnyConnect licenses for your sessions. In the case of SSL VPN, the limit is also 2500.
So you could have up to 2500 SSL VPN sessions (assuming licenses are installed) in addition to 2500 IPsec site-to-site VPNs concurrently active.
Reference Table 3 here:
06-09-2019 12:02 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide