New to cisco, coming from all juniper environment for the last 5 years. Need to create a VPN connection to govt agency for several services that my company subscribes to. On paper i know exactly what i need to do, but in cisco asdm i have no clue where i am going ... and i am too green for command line (but willing to try)
(IP addresses changed to protect the victims identity :)
Public IP 188.8.131.52
Source NAT: 10.99.47.0/24
Encryption --> 3DES with group2
Integrity --> SHA1
Transform --> ESP-3DES-SHA
IKE key Xchange --> 3DES with group 2
IKE SA lifetime 8 hours
remote ip i need access too
service1: 184.108.40.206 port 23111
service2: 220.127.116.11 port 992
service3: 18.104.22.168 port22
service4: 22.214.171.124 port 9964
service5: 126.96.36.199 port 21
service6: 188.8.131.52 port21
service7: 184.108.40.206 port 22
I was able to use the VPn wizard in asdm to get the basics of the VPn setup. I was stuck on a bunch of things listed below
after creating frist VPN. how do i specify multiple remote ips to connect to through the tunnel. I cant create more than one VPN pointing to the same remote IP like i can on the juniper.
Do the port values of the services need to be addressed anywhere in the VPN connection?
My LAN is 10.10.1.1/24, but the source subnet has to be 10.99.47.0/24 or the traffic will be dropped by the remote site. How to i create a DIP pool so that clinets on the 10.10.1.1 network, and alos about 40 other subnets behind the cisco LAN get NATsd to an ip from the source pool?
how do i tell if i am succesful with setting up the vpn. on asdm i got to monitoring tab and it doesnt show me whther its working or not or even exists to begin with.
i have soo many more questions, but ill start with these then probably create more posts linked back to this one, coz this is def more than a 500pt project i got on my hands. also let me know what inof you might need from my device. i dont like justposting the config unless someone really needs it.