11-16-2012 06:24 PM
I am in need of some help. I currently need help setting up an ASA to terminate a site to site VPN using just one interface. I believe I can get this configured using hairpinning but wanted to see if anyone had experience configuring an ASA with VPN in this way.
I am currently running version 8.4.3 Here is a diagram of how I need the ASA to be configured.
^^^^^^^^
( internet )
vvvvvvv
|
|
|
--------
| router |
--------
|
|
_____ |
| ASA |----|
--------- |
|
___|__
| switch |
----------
| | |
| | |
/ | \
/ | \
/ | \
--------- --------- ----------
| SRV | | SRV | | SRV |
--------- -------- ----------
-pablo
11-16-2012 06:26 PM
Diagram didnt quite come out like i wanted but hopefully you get the point.
Thanks
11-17-2012 01:09 AM
Hello,
You can use the subinterface and vlan concept to implement this
Instead of using physical interface for outside and inside, you can connect your physical interface to switch and configure that as a trunk to pass internet vlan and inside vlan, then configure interface vlan's on asa for outside and inside interface
https://learningnetwork.cisco.com/thread/10502
this might help
regards
Harish
11-19-2012 06:23 AM
Thanks, I look into that.
-pablo
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide