spinnaker01
asked on
Cisco ASA to Cisco 877 ADSL router Site to Site VPN......
Hi,
We have recently update our firewall to a Cisco ASA 55xx series, previously we had a Watchguard. I am trying to migrate some site to site VPNs to the new firewall and update the remote sites routers. Hence I need to setup a site to site vpn using Cisco ASA 5510 (ISP leased line with staitic IP) at our HQ site to a Cisco 877 Router (with ADSL and static IP) at the remote sites.
Can somone provide a suitable example config or point me in the right direction, both ends are static / fixed public IP. These are site to site vpns in effect replicating fully routed WAN sites supporting IP dependant printing for remote devices. There is no need for DHCP relay / or remote site provision - remote devices will have fixed IPs.
Any info gratefully received!
Many Thanks!
We have recently update our firewall to a Cisco ASA 55xx series, previously we had a Watchguard. I am trying to migrate some site to site VPNs to the new firewall and update the remote sites routers. Hence I need to setup a site to site vpn using Cisco ASA 5510 (ISP leased line with staitic IP) at our HQ site to a Cisco 877 Router (with ADSL and static IP) at the remote sites.
Can somone provide a suitable example config or point me in the right direction, both ends are static / fixed public IP. These are site to site vpns in effect replicating fully routed WAN sites supporting IP dependant printing for remote devices. There is no need for DHCP relay / or remote site provision - remote devices will have fixed IPs.
Any info gratefully received!
Many Thanks!
If you use the ASDM which is the Java GUI for the ASA there is a site to site vpn wizzard that will walk you thought the vpn setup on the ASA. I think it will even make the config for the router at the end. Hope this helps if not let me know what else i can do for you.
ASKER
Hi Cosmicfox,
H'mm I would rather use the command line as some of the VPN's were migrated as part of the firewall upgrade, therefore the firewall end of these VPN's already exists, hence I am not keen on using the wizard for these - hope that makes sense.
Thanks
Spinnaker01
H'mm I would rather use the command line as some of the VPN's were migrated as part of the firewall upgrade, therefore the firewall end of these VPN's already exists, hence I am not keen on using the wizard for these - hope that makes sense.
Thanks
Spinnaker01
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi Cosmicfox,
Humble appologies for not getting back to you, I have been out on site and just overtaken by events. I will go through your suggestions and pdfs and get back to you. Thanks for this info looks good, I'll post a further comment, but probably not unitl next week now.
Thanks and regards............
Spinnaker01.
Humble appologies for not getting back to you, I have been out on site and just overtaken by events. I will go through your suggestions and pdfs and get back to you. Thanks for this info looks good, I'll post a further comment, but probably not unitl next week now.
Thanks and regards............
Spinnaker01.
ASKER
Hi Cosmicfox,
Thanks for the info, will re-log if required, in the process of testing at present.
Thanks again sorry for the delayed responses.
Spinnaker01
Thanks for the info, will re-log if required, in the process of testing at present.
Thanks again sorry for the delayed responses.
Spinnaker01