?
Solved

cisco asa public IP address change breaks vpn

Posted on 2008-10-26
7
Medium Priority
?
648 Views
Last Modified: 2011-10-19
I have a remote teleworker that has a vpn tunnel between their ASA and my ASA.  Every time the teleworker's IP address changes on her home network, we have to re-establish the VPN.  Is there any way I can automate this?  I do not want to configure the VPN everytime she gets a new public IP address.

Thanks!
B.
0
Comment
Question by:bbanis2k
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 10

Expert Comment

by:kyleb84
ID: 22810083
Ask her to call her ISP and request a static IP. It'll either be free or about $5 extra a month.
0
 

Author Comment

by:bbanis2k
ID: 22810119
Is there not a way to make it a "dynamic" vpn?  She does not have a commercial ISP, therefore I do not think they will give here a business class address.
0
 
LVL 10

Expert Comment

by:kyleb84
ID: 22810133
You don't need to be a business to get a static IP, my ISP at home is consumer-level and I've got a static.

And yes you can make the VPN dynamic, do you know your way around the ASA's command line interface?
Can you post both the ASA's configs?
(Remember to take out username+passwords.)
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 3

Expert Comment

by:Slawomir Malinowski
ID: 22810606
As far I understand you have site to site vpn at this moment and you need to have simply remote vpn access. Could you please send your Cisco device details (model, IOS, config). Additionaly please find below tutorial for IPSec configuration http://www.petenetlive.com/Tech/Firewalls/Cisco/c2svpnRADIUS.htm

0
 
LVL 79

Accepted Solution

by:
lrmoore earned 2000 total points
ID: 22811272
Simple to setup the ASA at Corp as a EZVPN server and the home ASA as EZVPN remote.
Use the wizard. Best to upgrade to 8.0(4) first on both ends.
Attached is a configuration guide
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 22811277
Reference config document
ezvpn-asa5505-515e.pdf
0
 

Author Closing Comment

by:bbanis2k
ID: 31510178
Excellent!
0

Featured Post

Will your db performance match your db growth?

In Percona’s white paper “Performance at Scale: Keeping Your Database on Its Toes,” we take a high-level approach to what you need to think about when planning for database scalability.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There’s a movement in Information Technology (IT), and while it’s hard to define, it is gaining momentum. Some call it “stream-lined IT;” others call it “thin-model IT.”
In this article, we’ll look at how to deploy ProxySQL.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

719 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question