Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1006
Views
0
Helpful
4
Replies

ASA IKEv1 L2L Tunnel and cisco anyconnect ikev2 vpn dial-in working on the same outside interface

Go to solution
s.schuler@sys-tec.info
Level 1
Level 1

‎12-13-2020 10:24 AM

Hi,

 

currently we use ikev1 dial-in with Mac Cisco IPsec client in parallel on the same interface. Because of future win10 client we had/we plan to use Cisco Anyconnect client with ikev2 and certificate. Does this work with the L2L ikev1 tunnel or do we have to change this too? I've red in this forum, that Cisco IPsec client (Mac) and win10 Cisco AnyConnect client doesn't work in together / in parallel on the same outside interface? Is there any experience with this constellation in this forum.

Many thx in advance

 

Steve

 

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎12-14-2020 03:21 AM

Hi s.schuler@sys-tec.info 

Yes, RAVPN = Remote Access VPN

 

Yes, you can have L2L IKEv1 and IKEv2 AnyConnect RAVPN on the same interface.

 

HTH

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Rob Ingram
VIP
VIP

‎12-13-2020 10:38 AM

Hi s.schuler@sys-tec.info 

Yes, you can have an IKEv1 L2L VPN and IKEv2 RAVPN enabled on the outside interface.

When you say Cisco IPSec client are you referring to the old Cisco VPN client (pre anyconnect)?....this would no longer be supported. You get the most performance/security by running anyconnect.

 

HTH

0 Helpful

Go to solution
s.schuler@sys-tec.info
Level 1
Level 1
In response to Rob Ingram

‎12-14-2020 03:13 AM

Hi Rob,

 

first of all many thx. I'm a little bit confused. Yes we are using the Cisco IPSec Client build in in the MacOS, which is the same as the pre-Anyconnect Client (now VPN Client, cisco changed the naming ome weeks before).

I know that the mentioned old Cisco IPSEC client will not be supported by Cisco amymore

So to be exactly, what do you mean with RAVPN (remote Access?).

 

Our future scenario will be (one the same ASA outside interface, using 'classical ASA firmware, not FTD)

L2L tunnels to subsidiaries via IKEv1 with pre-shared keys

and

Cisco Anyconnect Client, IKEv2 with certificate and xml-profiles on the clients

 Will this work?

 

Many thanks in advanced

 

Steve

 

0 Helpful

Go to solution
Rob Ingram
VIP
VIP

‎12-14-2020 03:21 AM

Hi s.schuler@sys-tec.info 

Yes, RAVPN = Remote Access VPN

 

Yes, you can have L2L IKEv1 and IKEv2 AnyConnect RAVPN on the same interface.

 

HTH

0 Helpful

Go to solution
s.schuler@sys-tec.info
Level 1
Level 1
In response to Rob Ingram

‎12-16-2020 04:36 AM

many thx

Steve

0 Helpful
Customers Also Viewed These Support Documents