Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
287
Views
0
Helpful
1
Replies

Anyconnect to site-to-site without inside network

vmosiris75
Level 1
Level 1

‎09-14-2015 01:12 AM - edited ‎02-21-2020 08:27 PM

 

Clients Anyconnect => INTERNET => (ASA5505)=>INTERNET=>WORK
                                                                       |_____Site-To-Site____|

 

I would like create an Site-To-Site vpn between my home and my work (work don't want to give 3 access vpn anyconnect but asked me to do what i am explaining...)

Admin on my work gave me an access to some servers (image attached) via site-to-side and Key/ip-wan to connect my asa5505 to work network.

We are 3 users who want connect from everywhere to my asa5505 (home) using anyconnect and have access to work.

Anyconnect is working for 3 users but can't reach work.

Config is attached.

Home:

asa inside: 10.96.53.1/24

vpnpool: 10.96.53.100-10.96.53.200

asa outside: 192.168.1.8/24 (fixed on isp router and asa5505)

My isp router: 192.168.1.2/24 (ip wan 85.XXX.XXX.XXX)

Work:

Ip wan: 193.XXX.XXX.XXX

Phase 1 / IKE:

Encryption AES256

Hash SHA1

Lifetime 86400s

DH Group 5

Mode main Auth.

Preshared Key by SMS

 

Phase 2 / IPSec:

Encryption AES256

Hash SHA1

Lifetime 3600s

PFS yes

DH Group 5

 

Thank you,

 

Mo.

Labels:
Preview file
28 KB
Preview file
14 KB
0 Helpful
1 Reply 1

Abaji Rawool
Level 3
Level 3

‎09-15-2015 09:41 AM

Hi,

This post may help :https://supportforums.cisco.com/discussion/10914361/anyconnect-client-site-site-destination

HTH

Abaji.

0 Helpful
Customers Also Viewed These Support Documents