cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
521
Views
0
Helpful
2
Replies

Need to create another S2S VPN in Same ASA5505

vipinrajrc
Level 3
Level 3

Hi Experts,

I need to create second VPN in same ASA5505, it has already a VPN to one of our clients. So it alredy have a transformset,cryptomap,policy.

Now i need to create new one. i like to create a seperate transformset and crypto map for this 2nd VPN with a new name to identfy very easily.

But i have doubt like may it will affect the current VPN? because it has another VPN with another  tranformset and cryptomap.......

So i have the following questions.......

1) will it affect the current VPN?

2) do i need to create a seperate tranformset and cryptomap? or with same tranformset and cryptomap with different number.....

    if it possible to create multiple cryptomap then i would like that to create.....

regards

Vipin

Thanks and Regards, Vipin
1 Accepted Solution

Accepted Solutions

Jennifer Halim
Cisco Employee
Cisco Employee

1) You would need to use the same crypto map name with a different sequence number. You can not use a new name for the crypto map. However, if you would like to identify the new VPN easily, just name your transform set, and crypto ACL with the new VPN name.

2) You can use the same transform set if the second VPN has the same policy as the first VPN. You definitely have to use the same cryptomap name with a different sequence number, as you can't create a new cryptomap name.

Hope that answers your question.

View solution in original post

2 Replies 2

Jennifer Halim
Cisco Employee
Cisco Employee

1) You would need to use the same crypto map name with a different sequence number. You can not use a new name for the crypto map. However, if you would like to identify the new VPN easily, just name your transform set, and crypto ACL with the new VPN name.

2) You can use the same transform set if the second VPN has the same policy as the first VPN. You definitely have to use the same cryptomap name with a different sequence number, as you can't create a new cryptomap name.

Hope that answers your question.

Hi

Thanks Jennifer.

Thanks and Regards, Vipin