Re: terminating IPSec vpn on multiple interfaces
- From: Merv <merv.hrabi@xxxxxxxxxx>
- Date: Tue, 4 Mar 2008 02:05:24 -0800 (PST)
On Mar 3, 10:53 pm, curtislamast...@xxxxxxxxx wrote:
I have a company that is needing to do this as well. Today, my
associate got some bad support from a Cisco TAC person in the manner
of rudeness and they were not very helpful. Enough of that... We have
a single ASA 5510 w/o Security Plus License and we need to terminate
IPSEC on the second interface for RA clients. It's workable when we
know where they are coming from (IP Wise) but RA clients are pretty
much dynamic so putting in a route for them is an admin nightmare. I
have this working at another client site with a static endpoint for a
L2L IPSEC connection. My question is, how do I dynamically add routes
based on the interface in which the traffic was initiated by the RA
clients? The RA client will work just fine if I put a route for my
outside IP address to use the second connections default gateway
address. Any Ideas?
look up IPSEC reverse route injection
.
- Follow-Ups:
- Re: terminating IPSec vpn on multiple interfaces
- From: InetSecurity
- Re: terminating IPSec vpn on multiple interfaces
- References:
- terminating IPSec vpn on multiple interfaces
- From: InetSecurity
- Re: terminating IPSec vpn on multiple interfaces
- From: curtislamasters
- terminating IPSec vpn on multiple interfaces
- Prev by Date: Re: Redundant switch second time
- Next by Date: Re: Connectivity Problem with WS-C3750G-24TS and Broadcom BCM5708C SLB
- Previous by thread: Re: terminating IPSec vpn on multiple interfaces
- Next by thread: Re: terminating IPSec vpn on multiple interfaces
- Index(es):
Relevant Pages
|
