Advertisement

05.19.2008 at 05:39AM PDT, ID: 23413447
[x]
Attachment Details

ASA 5500 Site to Site VPN

Asked by PeteLong in Cisco PIX Firewall, Virtual Private Networking (VPN), Enterprise Firewalls

Hi All

Ive done hundreds of Cisco ASA site to site VPNs but this ones a little different.

Site A

Straightforward ASA 5505


Site B

Don't know what the platform is I'm not configuring that end :(

But I have to throw the VPN to a subnet 123.123.144.96/27 on which the outside of the remote firewall is INSIDE that subnet its IP address is 123.123.144.100.
The technicians at the other end tell me....

We are using a technique called 'proxy arp' to do this. The firewall / router is the machine that receives traffic to any of the addresses on the public network, it then fowards it on to the correct machine behind the firewall using  Arp addresses. We know that this works because we already have a VPN setup for use xxxxxxxxxxx, and I can see ESP traffic to their VPN Server via traffic analyser software.

Am I going to be able to get this to work?

Pete

Start Free Trial
[+][-]05.20.2008 at 07:32AM PDT, ID: 21606487

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: Cisco PIX Firewall, Virtual Private Networking (VPN), Enterprise Firewalls
Sign Up Now!
Solution Provided By: Cyclops3590
Participating Experts: 1
Solution Grade: A
 
 
[+][-]05.20.2008 at 07:33AM PDT, ID: 21606497

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]05.23.2008 at 12:48AM PDT, ID: 21630158

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]05.28.2008 at 01:13AM PDT, ID: 21658545

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]05.28.2008 at 04:53AM PDT, ID: 21659530

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628