06-25-2015 05:13 AM
Hi,
I am facing a challenge of configuring an VPN between SecuirePoint Black Dwarf VPN Router and ASA5510.
Black Dwarf's public IP is dynamic. Behind it there's a small network, which needs access to HQ through this VPN.
Will it work ? Or does ASA only support Cisco ISRs and other ASAs as a peer ?
Please suggest.
06-29-2015 01:15 AM
Hi,
It should work from any peer as long as it supports the dynamic peer capabilities.
For Asa side example refer :http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/112075-dynamic-ipsec-asa-router-ccp.html#t1-ciscoasa
HTH
Abaji.
06-29-2015 02:40 AM
Abaji Rawool, how can I tell if the device "supports the dynamic peer capabilities" ?
For this "Black Dwarf" device, the manual pdf mentions Site-to-Site VPN as an option, and you can choose Outside Interface as the source, so no exact IP address is mentioned in the configuration. Is there anything else that I must look for ?
06-30-2015 09:07 AM
This router should be able to define static peer and interesting traffic for VPN. Also it should be able to define phase 1 and phase 2 proposals supported by ASA.
HTH
Abaji.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide