05-08-2020 01:17 PM
Hi, Can setup IPsec site-to-site VPN between ASA-5516X-firepower and ASA-5515? The software on ASA-5515 is very old one, v8.x. Please advise, thanks in advance.
Solved! Go to Solution.
05-08-2020 01:24 PM - edited 05-08-2020 01:27 PM
Hi,
Yes you can. Depending on which exact version of ASA you are running on the ASA 5515, then it may not support IKEv2 and Iatest encryption/integrity algorithms, but regardless you should at least be able to use IKEv1. When you configure the VPN, ensure the IKE version, encryption, integrity, diffie hellman group, lifetimes, pfs (if used) etc are identical.
I suggest upgrading the ASA 5515 to the latest supported version, v8.x is very old and full of bugs.
HTH
05-08-2020 01:24 PM - edited 05-08-2020 01:27 PM
Hi,
Yes you can. Depending on which exact version of ASA you are running on the ASA 5515, then it may not support IKEv2 and Iatest encryption/integrity algorithms, but regardless you should at least be able to use IKEv1. When you configure the VPN, ensure the IKE version, encryption, integrity, diffie hellman group, lifetimes, pfs (if used) etc are identical.
I suggest upgrading the ASA 5515 to the latest supported version, v8.x is very old and full of bugs.
HTH
05-08-2020 01:34 PM
Thanks HTH for your kind reply. ASA-5515 hardware is 5 years ago, can it support latest version? Do we need to upgrade the memory or HDd? Thanks.
05-08-2020 01:43 PM
05-08-2020 06:48 PM
Thanks a lot!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide