Cisco FMC with multiple protected subnets on local side

jpever · ‎06-25-2024

I want to build Site 2 site tunnel from Cisco FTD to AWS. Version is 7.0.6

On the FMC GUI, I am creating point to point tunnel.

can I add multiple private subnets in protected networks on Cisco FMC ?

Does this create multiple Phase 2 tunnels for each private subnet to AWS ?

balaji.bandi · ‎06-25-2024

most of the question you asked yes, example below guide help you :

https://www.cisco.com/c/en/us/support/docs/security-vpn/ipsec-negotiation-ike-protocols/216276-configure-route-based-site-to-site-vpn-t.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

MHM Cisco World · ‎06-26-2024

can I add multiple private subnets in protected networks on Cisco FMC ? Yes sure

Does this create multiple Phase 2 tunnels for each private subnet to AWS ? Yes one child SA for each subnet , but why you ask that ?

if you want one SA then use VTI not policy based S2S VPN

MHM