Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 392
  • Last Modified:

L2L VPN ASA on Routed WAN

Can I create a VPN LtoL between two ASA for two servers that are on same two subnets as routed traffic that goes over t1.

Other traffic goes to routers before ASA as GW but two servers will go to ASA as GW.
Internet goes through ASA both sides

The ASA knows the routed networks and when I build VPN it tries to use the internal and rout across the T1and is blocked.

the tunnel never is up.

Do I need to change the ip on both servers to separate. networks than routed traffic?

What is best way to have VPN for two servers and not for other traffic?

thanks
0
johnemyers
Asked:
johnemyers
1 Solution
 
asavenerCommented:
You have to change the routes on the ASAs.  The destination network has to be routed out the outside interface in order for the traffic to be picked up by the crypto map.

You may also need to prevent the traffic from being NAT'd, as NAT operations take place before crypto operations.  If the traffic is NAT'd, then the crypto map still won't match the traffic.
0
 
johnemyersAuthor Commented:
thanks
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now