02-16-2015 02:26 PM
in an existing firewall with several VPN connections, is it advisable to use the VPN wizard in ASDM to configure addtional VPN connections or use the VPN section under configure in the ASDM?
which one is preferred?
Solved! Go to Solution.
02-16-2015 04:37 PM
Under Configuration > Remote Access VPN (or Site-to-Site VPN as the case may be).
I recommend that because you have full control over the details (unlike the Wizard which only exposes a subset of the options available to you).
02-16-2015 04:14 PM
The wizard is fine for a simple single VPN setup.
For anything with more complexity or setting up a new VPN where several already exist I'd recommend you go with the detailed configuration sections - and only after understanding the setup for the existing ones. In either case, I always have my ASDM set to preview commands before applying so that I can see exactly what's going on at the command line and learn / reinforce my knowledge of the actual configuration commands.
(Personally I'd do the whole thing by command line unless I needed to create a client profile and even then I might do that by hand; but then I've done hundreds over the years.)
02-16-2015 04:31 PM
Thanks Marvin,
can you please clerify:
For anything with more complexity or setting up a new VPN where several already exist I'd recommend you go with the detailed configuration sections under the VPN wizard? Or under configure then VPN section?
02-16-2015 04:37 PM
Under Configuration > Remote Access VPN (or Site-to-Site VPN as the case may be).
I recommend that because you have full control over the details (unlike the Wizard which only exposes a subset of the options available to you).
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide