Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
309
Views
0
Helpful
1
Replies

Site - site vpn

saroj pradhan
Level 1
Level 1

‎02-12-2014 04:37 AM - edited ‎03-11-2019 08:44 PM

i want  site 2 site  vpn   between  two sites   on  cisco  ASA 5510 Firewall.

One  ASA has  already  one  site 2 site  vpn  configured. please guide  me  what  to  do  for  configurations.

Regards,

Saroj

Labels:
0 Helpful
1 Reply 1

Marius Gunnerud
VIP
VIP

‎02-12-2014 05:00 AM

You can apply the following configuration on both ASAs.  Just remember that the crypto ACLs should be a mirror image of eachother.  for example if the ip 10.10.10.0 255.255.255.0 is the source at one end, this same ip will be the destination when configured at the other end.

access-list ACL-NAME extended permit ip

crypto isakmp policy

  authentication pre-share

  hash sha

  group 2

  encryption aes256

crypto ipsec transform-set SET-NAME esp-aes 256 esp-sha-hmac

tunnel-group type ipsec-l2l

tunnel-group ipsec-attributes

  pre-shared-key PASSWORD

crypto map 10 match address ACL-NAME

crypto map 10 set transform-set SET-NAME

crypto map 10 set peer

--
Please remember to rate and select a correct answer

--
Please remember to select a correct answer and rate helpful posts
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card