Solved

VPN site to site using  2 ASA5505

Posted on 2011-03-09
4
395 Views
Last Modified: 2012-05-11
Hello All,
I'm tring to setup a VPN site to site using  2 ASA5505, Please help, here's the config from site A in the attached txt document. Site B is not setup at all as of now. I just want to make sure I have this setup site A setup OK. current-run-config-westbloomfiel.txt
0
Comment
Question by:mdallen8960
  • 2
4 Comments
 
LVL 35

Accepted Solution

by:
Ernie Beek earned 500 total points
ID: 35093423
Looking good to me.

Just remember when setting up the other side, the access lists you use to 'select' the traffic must be an exact match but the other way around.....

Like
access-list 102 extended permit ip 192.168.0.0 255.255.255.0 192.168.5.0 255.255.255.0
should be
access-list 102 extended permit ip 192.168.5.0 255.255.255.0 192.168.0.0 255.255.255.0
at the other end.
If there are more lines, match them all. This will prevent weird issues to happen.
The same goes for the relevant part of the net exempt (nat0 part) of course.
0
 
LVL 16

Expert Comment

by:memo_tnt
ID: 35094954
Hi

you can review the following sample and use the same configuration:

http://www.ciscoblog.com/archives/2009/05/base_config_asa.html


Regards
0
 

Author Closing Comment

by:mdallen8960
ID: 35107876
Thanks alot.....
0
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 35107887
Glad I could help & thx for the points :)
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Juniper VPN devices are a popular alternative to using Cisco products. Last year I needed to set up an international site-to-site VPN over the Internet, but the client had high security requirements -- FIPS 140. What and Why of FIPS 140 Federa…
Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question