cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to the Cisco Small Business Community

Have a question? Click on a topic board below to get started in the community.
Get the latest news in this issue of the Cisco Small Business Monthly Newsletter

261
Views
0
Helpful
1
Replies
Highlighted
Beginner

RV340 site to site to ASA and IP Groups

I have an RV340 at a remote office connecting to an ASA at the main office. The tunnel is up and working fine and can access the remote private subnet at 192.168.1.x from the local subnet 192.168.0.x.

 

There are three different subnets at the main office (3.x, 5.x and 7.x), all of which can be individually reached by changing the remote network on the RV340 - thus proving connectivity.

 

When I create an "IP Group" that contains all three subnets on the RV and then specify that group in the S2S connection, I can no longer reach them. Thoughts?

 

 

1 REPLY 1
Highlighted
Beginner

Re: RV340 site to site to ASA and IP Groups

Probably some config mismatch between ASA and RV340.

I currently run a s2s vpn between 2 RV340 using an IP group with 6 subnets on one side without any problems. 

 

Unfortunately I haven't worked with ASA in a long time, so I don't can't really remember any possible caveats that might apply, just make sure that the object groups (subnets) match (mirrored) exactly between the ASA and the RV340. 

 

Perhaps show us your config (cleansed from sensitive information)

 

ip group.jpg