Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
377
Views
0
Helpful
1
Replies

ASA5510 VPN

cisco_H
Level 1
Level 1

‎01-16-2013 01:26 AM

Hello,

I need some help with this please?

I need two vpn tunnels from one ASA5510 to two customer endpoints but with the same host on the remote side, the two tunnels are for redundancy reasons. Can I just configure two tunnels with the same host on the remote side and assume the ASA will understand to just use one of the tunnels when both active or the one left when one is down? Or do I need extra configuration for that.

Patrick

Labels:
0 Helpful
1 Reply 1

Karsten Iwen
VIP
VIP

‎01-16-2013 01:41 AM

This is typically achieved with a second peer-statement in the crypto-map:

crypto map mymap 10 set peer a.a.a.a b.b.b.b

you need the same crypto-settings (set transform-set, crypto-ACL) to both peers in that case.

-- 
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni

0 Helpful
Customers Also Viewed These Support Documents