Solved

cisco asa public IP address change breaks vpn

Posted on 2008-10-26
7
647 Views
Last Modified: 2011-10-19
I have a remote teleworker that has a vpn tunnel between their ASA and my ASA.  Every time the teleworker's IP address changes on her home network, we have to re-establish the VPN.  Is there any way I can automate this?  I do not want to configure the VPN everytime she gets a new public IP address.

Thanks!
B.
0
Comment
Question by:bbanis2k
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 10

Expert Comment

by:kyleb84
ID: 22810083
Ask her to call her ISP and request a static IP. It'll either be free or about $5 extra a month.
0
 

Author Comment

by:bbanis2k
ID: 22810119
Is there not a way to make it a "dynamic" vpn?  She does not have a commercial ISP, therefore I do not think they will give here a business class address.
0
 
LVL 10

Expert Comment

by:kyleb84
ID: 22810133
You don't need to be a business to get a static IP, my ISP at home is consumer-level and I've got a static.

And yes you can make the VPN dynamic, do you know your way around the ASA's command line interface?
Can you post both the ASA's configs?
(Remember to take out username+passwords.)
0
 Watch the Recording: Learning MySQL 5.7

MySQL 5.7 has a lot of new features. If you've dabbled with an older version of MySQL, it is definitely worth learning.

 
LVL 3

Expert Comment

by:Slawomir Malinowski
ID: 22810606
As far I understand you have site to site vpn at this moment and you need to have simply remote vpn access. Could you please send your Cisco device details (model, IOS, config). Additionaly please find below tutorial for IPSec configuration http://www.petenetlive.com/Tech/Firewalls/Cisco/c2svpnRADIUS.htm

0
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 22811272
Simple to setup the ASA at Corp as a EZVPN server and the home ASA as EZVPN remote.
Use the wizard. Best to upgrade to 8.0(4) first on both ends.
Attached is a configuration guide
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 22811277
Reference config document
ezvpn-asa5505-515e.pdf
0
 

Author Closing Comment

by:bbanis2k
ID: 31510178
Excellent!
0

Featured Post

Building an interactive eFuture classroom

Watch and learn how ATEN provided a total control system solution including seamless switching matrix switch, HDBaseT extenders, PDU, lighting control to build an interactive eFuture classroom.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

You deserve ‘straight talk’ from your cloud provider about your risk, your costs, security, uptime and the processes that are in place to protect your mission-critical applications.
This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

626 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question