• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 357
  • Last Modified:

Cisco 871 Site to Site VPN possible by configuring only one end?


We connect to our datacenter VPS by using the old "Cisco IPSEC VPN Client" software on a Cisco ASA in the datacenter.

I have all the details for configuring Cisco IPSEC VPN client, e.g. group key/password, login passwords, IP addresses, split tunneling settings etc... None of it's encrypted in a config file or anything.

I wanted to know - We have a spare Cisco 871 router here, is it possible to configure this router to connect to the Cisco ASA in the datacenter in the same way that the Cisco IPSEC VPN client connects (Split tunnel vpn with dynamic ip etc), WITHOUT involving changing anything on the Cisco ASA in the DC??

IF so - is this as simple as setting up "crypto ipsec client ezvpn ASA" from here ? http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/112075-dynamic-ipsec-asa-router-ccp.html

Or is it impossible to set up a VPN between Cisco routers without configuring the data centers Cisco ASA? ... The problem is the data center Cisco ASA can't be modified as they provider won't touch its configuration unless we buy a new one and a maintenance package or something - and we are currently in the progress of migrating away so its a politically hostile situation.

(I'm referring how many non-cisco routers have functionality such as a 'pptp vpn client' where you can set up a vpn without configuring both ends).

1 Solution
Matt VCommented:
It is certainly possible to set the 871 up as an ezVPN client.

Refer to this article for the related config.  I cannot say for sure if it will work with the existing ASA configuration.

Worth a try though.

birdisthewordAuthor Commented:
Fantastic thanks! Just wanted to make sure it was even possible before investigating further, cheers
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now