05-04-2011 09:00 PM
Hi,
We have a customer requirement of providing
We are looking at ASA5500 series firewall for both Remote office and HQ.
Can this be done?
If so, would appreciate if anyone can provide me with some pointers/read ups
Thank you
Regards: Jocelyn
05-05-2011 09:58 AM
Hi,
You seem to looking for a backup site to site Vpn tunnel.
Please check the following link:
Hope this helps.
Regards,
Anisha
P.S.:please mark this thread as answered if you feel your query is resolved. Do rate helpful posts.
05-05-2011 05:47 PM
I am not seeing how this is a backup vpn if and when a primary vpn fails.
Do the options below enforce a one way traffic on a vpn tunnel vs. two ways? which one is which?
answer-only—This specifies that this peer only responds to inbound IKE connections first during the initial proprietary exchange in order to determine the appropriate peer to which to connect.
bidirectional—This specifies that this peer can accept and originate connections based on this crypto map entry. This is the default connection type for all Site-to-Site connections.
originate-only—This specifies that this peer initiates the first proprietary exchange in order to determine the appropriate peer to which to connect.
05-06-2011 05:22 AM
Hi,
On the ASA with two links, you will have the crypto map entry associated with the primary ASA and the same crypto map entry associated with backup link.
You can check the following discussion:
https://supportforums.cisco.com/thread/2078908?decorator=print&displayFullThread=true
Hope this helps.
Regards,
Anisha
P.S.: please mark this thread as answered if you feel your query is resolved. Do rate helpful posts.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide