Re: terminating IPSec vpn on multiple interfaces
- From: InetSecurity <julianmd@xxxxxxxxx>
- Date: Tue, 4 Mar 2008 07:51:26 -0800 (PST)
On Mar 4, 5:05 am, Merv <merv.hr...@xxxxxxxxxx> wrote:
On Mar 3, 10:53 pm, curtislamast...@xxxxxxxxx wrote:
I have a company that is needing to do this as well. Today, my
associate got some bad support from a Cisco TAC person in the manner
of rudeness and they were not very helpful. Enough of that... We have
a single ASA 5510 w/o Security Plus License and we need to terminate
IPSEC on the second interface for RA clients. It's workable when we
know where they are coming from (IP Wise) but RA clients are pretty
much dynamic so putting in a route for them is an admin nightmare. I
have this working at another client site with a static endpoint for a
L2L IPSEC connection. My question is, how do I dynamically add routes
based on the interface in which the traffic was initiated by the RA
clients? The RA client will work just fine if I put a route for my
outside IP address to use the second connections default gateway
address. Any Ideas?
look up IPSEC reverse route injection
Would this apply to site-to-site ipsec terminated on multiple
interfaces?
.
- Follow-Ups:
- References:
- terminating IPSec vpn on multiple interfaces
- From: InetSecurity
- Re: terminating IPSec vpn on multiple interfaces
- From: curtislamasters
- Re: terminating IPSec vpn on multiple interfaces
- From: Merv
- terminating IPSec vpn on multiple interfaces
- Prev by Date: Re: PIX 525 and H.323 handling
- Next by Date: Looking for good cisco books
- Previous by thread: Re: terminating IPSec vpn on multiple interfaces
- Next by thread: Re: terminating IPSec vpn on multiple interfaces
- Index(es):
Relevant Pages
|
