Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
794
Views
0
Helpful
1
Replies

ASA 5505 Site-to-Site VPN with multiple networks

robert_bukowicki
Level 1
Level 1

‎01-22-2013 12:47 PM

Hi,

I have 2 Cisco ASAs 5505 in the different places with a created connection Site-to-Site VPN. It’s working fine in the networks where they are (10.1.1.0/24 and 10.2.1.0/24 respectively).

Additionally to the ASA1 are connected two subnets: 10.1.2.0/24 and 10.1.3.0/24 and the ASA2 is connected to one subnet: 10.2.2.0/24

A problem is when I’m trying to get to a host in the subnet behind the ASA2 from the subnet behind the ASA1  and vice versa.

Any help would be greatly appreciated.

Labels:
0 Helpful
1 Reply 1

Karsten Iwen
VIP
VIP

‎01-22-2013 02:11 PM

It's all about the crypto ACL. You have to combine all networks behind ASA1 with all networks behind ASA2. You can use object-groups for that to handle it. What's the config of your crypto ACL?


Sent from Cisco Technical Support iPad App

0 Helpful
Customers Also Viewed These Support Documents