Cisco VPN Connections between static and dynamic IP's

We have a Cisco ASA 5505 at a site with a static IP address and would like to be able to establish site-to-site VPN connections from PIX 501 firewalls on dynamic IP addresses.  When you set up a site-to-site connection, you're only allowed to enter an IP address.  If we use a dynamic IP address and it changes, the VPN will be broken.  Is there a way to set the ASA 5505 to accept incoming site-to-site VPN connections without having to explicitly specify the IP it's coming from?
LVL 2
OAC TechnologyProfessional NerdsAsked:
Who is Participating?
 
cstosgaleConnect With a Mentor Commented:
Cisco Easy VPN is the way forward. It's not actually that easy, but it does the trick. Here's a config for a router to an ASA:-

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080809222.shtml

The config for a pix shouldn't be significantly different, if you can use ASDM to configure it it makes it all even easier.
0
 
RouterDudeCommented:
What you are trying to accomplish is DMVPN, or dynamic multipoint VPN. WE have a couple of these setup and they work great, only downside is they only work on routers, not on the PIX or ASA.

Here is another link that is more specific to your question.

http://www.cisco.com/en/US/partner/products/ps6120/products_configuration_example09186a00805c5ad9.shtml
0
 
OAC TechnologyProfessional NerdsAuthor Commented:
Thank you!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.