Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
343
Views
0
Helpful
1
Replies

Redundant Lan to lan with ASA & routers query

mvsheik123
Level 7
Level 7

‎03-19-2015 06:45 PM

Hello experts,

 

Need to form a L2L tunnel from ASA to primary and secondary site IOS routers. ASA has single internet connection. Does the below works?

 crypto map abcmap 1 match address l2l_list
 crypto map abcmap 1 set peer 1.1.1.1  2.2.2.2  
 crypto map abcmap 1 set transform-set FirstSet

!

tunnel-group 1.1.1.1 type ipsec-l2l
tunnel-group 1.1.1.1 ipsec-attributes
pre-shared-key xyz

!

tunnel-group 2.2.2.2 type ipsec-l2l
tunnel-group 2.2.2.2 ipsec-attributes
pre-shared-key xyz

Please suggest.

Thanks,

MS

Labels:
0 Helpful
1 Reply 1

manish arora
Level 6
Level 6

‎03-20-2015 04:06 PM

yup looks good ( I am assuming you have Phase 1 Policies defined as well)  and both phase 1 and phase 2 are enabled on the outside interface.

Manish

0 Helpful
Customers Also Viewed These Support Documents