Solved: Re: Context with IPSec VPN

psaravanan · ‎03-11-2011

Hi friends,

I have an query for the below scenario.

I need to create a IPSec Site-Site VPN in the Single mode firewall.

Is it possible to create the tunnel.

I have ASA 5510 Security Plus with Ver 8.3

Thanks in advance.

Federico Coto Fajardo · ‎03-11-2011

In your case you need ASA in multiple-context to allow VPN to pass-thru.

There's no problem with that.

The only restrictions are that an ASA in multiple-context will not function as a VPN termination point (besides an admin tunnel)... but you can pass traffic or VPN traffic just like in ASAs in single-mode.

Federico.

View solution in original post

psaravanan · ‎03-11-2011

Pls check the attached diagram

Federico Coto Fajardo · ‎03-11-2011

Hi,

You can create L2L IPsec VPN tunnels using the ASA (in this case version 8.3) in single mode.

If you have the ASA in multiple-context mode you cannot, but no problem if using single mode.

Hope it helps.

Federico.

psaravanan · ‎03-11-2011

Hi Federico,

Thanks for your reply,

Ya, I know In multiple context would not support IPSec VPN.

In my scenario,

Tunnel should pass through Multiple context and reach the ASA (VPN Initiator).

Internet---------> Multiple context----------> VPN Initiator.

I have a query on that, whether this multiple context may allow the VPN tunnels are not.

If it is there, please send some examples for the reference.

Thanks in advance Federico.

Federico Coto Fajardo · ‎03-11-2011

In your case you need ASA in multiple-context to allow VPN to pass-thru.

There's no problem with that.

The only restrictions are that an ASA in multiple-context will not function as a VPN termination point (besides an admin tunnel)... but you can pass traffic or VPN traffic just like in ASAs in single-mode.

Federico.

psaravanan · ‎03-11-2011

Hi Federico,

Thanks for reply,

Pls send some example links for the same scenario.

Saravanan.