• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 395
  • Last Modified:

L2L VPN ASA on Routed WAN

Can I create a VPN LtoL between two ASA for two servers that are on same two subnets as routed traffic that goes over t1.

Other traffic goes to routers before ASA as GW but two servers will go to ASA as GW.
Internet goes through ASA both sides

The ASA knows the routed networks and when I build VPN it tries to use the internal and rout across the T1and is blocked.

the tunnel never is up.

Do I need to change the ip on both servers to separate. networks than routed traffic?

What is best way to have VPN for two servers and not for other traffic?

thanks
0
John Myers
Asked:
John Myers
1 Solution
 
asavenerCommented:
You have to change the routes on the ASAs.  The destination network has to be routed out the outside interface in order for the traffic to be picked up by the crypto map.

You may also need to prevent the traffic from being NAT'd, as NAT operations take place before crypto operations.  If the traffic is NAT'd, then the crypto map still won't match the traffic.
0
 
John MyersConsultantAuthor Commented:
thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Improve Your Query Performance Tuning

In this FREE six-day email course, you'll learn from Janis Griffin, Database Performance Evangelist. She'll teach 12 steps that you can use to optimize your queries as much as possible and see measurable results in your work. Get started today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now