From: pankaj ahuja (networksecurityconsultant@gmail.com)
Date: Sun Jul 29 2007 - 20:46:22 ART
Dip,
Assuming the topology as :
Router A --------- ASA ------Internet ------Router B
If you have a spare public IP then do a 1 to 1 static on ASA just like u do
for servers. If you do not have an extra ip then do port forwarding using
the outside interface of the ASA. i.e. forward traffic for UDP port 500 and
4500 on ASA's outside interface to land on to Router A's WAN interface. Also
allow traffic (esp protocol, UDP 500 and UDP 4500) from Router B's WAN
interface to ASA's interface.
Do let us know how this goes.
Pankaj
On 7/3/07, dip <diptanshu.singh@gmail.com> wrote:
>
> Hi Guys
> I had a scenario , in which i have two routers,having ASA in
> the transit path.ASA is performing PAT.Now i want to configure a L2L
> vpn between the two routers. Can anybody give me the details of how to
> configure the VPN using IKE AM and using IKE identity as hostname..I
> dont want to use preshared wild key to establish VPN
This archive was generated by hypermail 2.1.4 : Sat Aug 18 2007 - 08:17:42 ART