Solved

cisco asa public IP address change breaks vpn

Posted on 2008-10-26
7
646 Views
Last Modified: 2011-10-19
I have a remote teleworker that has a vpn tunnel between their ASA and my ASA.  Every time the teleworker's IP address changes on her home network, we have to re-establish the VPN.  Is there any way I can automate this?  I do not want to configure the VPN everytime she gets a new public IP address.

Thanks!
B.
0
Comment
Question by:bbanis2k
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 10

Expert Comment

by:kyleb84
ID: 22810083
Ask her to call her ISP and request a static IP. It'll either be free or about $5 extra a month.
0
 

Author Comment

by:bbanis2k
ID: 22810119
Is there not a way to make it a "dynamic" vpn?  She does not have a commercial ISP, therefore I do not think they will give here a business class address.
0
 
LVL 10

Expert Comment

by:kyleb84
ID: 22810133
You don't need to be a business to get a static IP, my ISP at home is consumer-level and I've got a static.

And yes you can make the VPN dynamic, do you know your way around the ASA's command line interface?
Can you post both the ASA's configs?
(Remember to take out username+passwords.)
0
Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.

 
LVL 3

Expert Comment

by:Slawomir Malinowski
ID: 22810606
As far I understand you have site to site vpn at this moment and you need to have simply remote vpn access. Could you please send your Cisco device details (model, IOS, config). Additionaly please find below tutorial for IPSec configuration http://www.petenetlive.com/Tech/Firewalls/Cisco/c2svpnRADIUS.htm

0
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 22811272
Simple to setup the ASA at Corp as a EZVPN server and the home ASA as EZVPN remote.
Use the wizard. Best to upgrade to 8.0(4) first on both ends.
Attached is a configuration guide
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 22811277
Reference config document
ezvpn-asa5505-515e.pdf
0
 

Author Closing Comment

by:bbanis2k
ID: 31510178
Excellent!
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco Anyconnect on MS Surface 12 50
DHCP for a new, 2nd subnet 12 65
types of VPN 2 58
Unable to enable HWIC 2FE 2 31
OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
Concerto Cloud Services, a provider of fully managed private, public and hybrid cloud solutions, announced today it was named to the 20 Coolest Cloud Infrastructure Vendors Of The 2017 Cloud  (http://www.concertocloud.com/about/in-the-news/2017/02/0…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question