mpls network / asa 5510 / ipsec

Hi folks
I have an mpls circuit with out internet access.  I also have an ASA sitting behind the mpls router.

What do I need to do to in order to establish an IPSEC tunnel to another vendor?

Thanks,

vburshteynAsked:
Who is Participating?
 
pwindellConnect With a Mentor Commented:
If you do that then to keep the routing scheme synchronous the MPLS Router or some other LAN Router would be the Default Gateway for the LAN and likewise be the central routing "decision maker" for the LAN,...then it would only need  a Static Route on it that told it to use your ASA as he gateway to the other vendor's system.
0
 
MikeKaneCommented:
If all you are looking for is a basic site to site setup, then Cisco has the HOWTO right here: http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080950890.shtml
0
 
pwindellCommented:
If the MPLS does not have Internet access then there is not much point in the ASA being there.

Is the other vendor accessible via the same private non-Internet MPLS Service?
0
Become an IT Security Management Expert

In today’s fast-paced, digitally transformed world of business, the need to protect network data and ensure cloud privacy has never been greater. With a B.S. in Network Operations and Security, you can get the credentials it takes to become an IT security management expert.

 
vburshteynAuthor Commented:
nope.

I guess for what i need i should get an outside ds3 line this way ill get an outside IP for my ASA.
0
 
pwindellCommented:
That's correct.  It would also be good if they had the same ASA on their end to simplify the IPSec setup,..although it may still be doable even if you mix brands.
0
 
vburshteynAuthor Commented:
its a same model ASA sitting 5 feet from the one in question.
0
All Courses

From novice to tech pro — start learning today.