I have a Cisco ASA 5520 firewall and I am trying to create a VPN that will allow an outside support company for our school divisions HVAC system to remote in and monitor/make changes to their controls when necessary.
Since this company that needs VPN access has an HVAC system in each of 5 different schools, I was told that one possible solution is to create a new VPN group with a new pool of IP addresses and then create rules that only allow those pool addresses to connect to the target private IP addresses. This way additional NATs are not needed for each location.
Can someone explain to me the process of how to setup this VPN on the Cisco ASA 5520 device. Please provide explanation with some detail as oppossed to just a general answer as I am not intimately knowledgeable of this device at this point in time.
Thanks so much for your input.