Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
556
Views
0
Helpful
1
Replies

Dynamic VPN Tunnel (ezvpn-ASA to FTD)

netbeginner
Level 2
Level 2

‎02-04-2021 06:31 AM - edited ‎02-04-2021 06:32 AM

Hi All, 

 

At current setup...We have "ezvpn setup between remote end routers(Cellular Interface enabled) and DC ASA firewall".  

 

Remote locations are multiple (approx 5) that are creating ezvpn with same ASA in current setup. VPN tunnel going active when any traffic has been initiated from remote end else down in idle condition.

 

No Static IP at Remote End (As taking IP from Cellular SIM).

At DC end, there is a Static IP.

 

There is a user "abc-xyz" configured on remote end router as below, for eg :

username abc-xyz password abc-xyz
xauth userid mode local

 

Authentication is happening with Cisco ISE.

 

Current setup need to be migrate to new DC, where we have FTD 4100 (managed by FMC) firewall instead of ASA FW.

 

As per finding, ezvpn is not supported on FTD. Can anyone please recommend for the would be configuration or share some good document with step-wise configuration changes at both ends.

 

Rgds

Labels:
0 Helpful
1 Reply 1

netbeginner
Level 2
Level 2

‎02-04-2021 10:45 PM

Hello All, 

 

If anyone implemented any such solution, please share 

0 Helpful
Customers Also Viewed These Support Documents