Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: webvpn and remote IPSec vpn on a single ASA devive

webvpn and remote IPSec vpn on a single ASA devive 6 years 9 months ago #33835

  • jhun
  • jhun's Avatar
  • Offline
  • Senior Member
  • Posts: 356
  • Karma: 0
Hi,

I would like to know if it is possible to have both webvpn (Clientless vpn) and remote IPSec vpn running on the same ASA device.

Currently, I have an ASA 5510 having the following vpn services:

- Site-to-Site VPN (IPSec)
- Clientless VPN (SSL)

I would like to add a remote IPSec VPN implementation since the webvpn has a limit of 2 connections (unless you increase that and buy additional licenses to Cisco). Since IPsec has 250 connections, it is more cost-effective to take that route instead.

Any help, pointers, config guides would be very much appreciated.

By the way, I tried making another tunnel-group and making that as the remote IPsec, however when I applied it to the outside interface, my L2L VPN went down.

Thanks
The administrator has disabled public write access.

Re: webvpn and remote IPSec vpn on a single ASA devive 6 years 9 months ago #33837

  • jhun
  • jhun's Avatar
  • Offline
  • Senior Member
  • Posts: 356
  • Karma: 0
Hi,

just to answer my queries above. Yes it is possible. If you have existing VPNs already configured and have a crypto map already assigned to an interface, the best thing to do is create an unused policy number of the existing crypto map and set your parameters there. it would be automatically applied to the outside interface and instantly enabling the service.

i will post more detailed explanation on the next post.

thanks
The administrator has disabled public write access.

Re: webvpn and remote IPSec vpn on a single ASA devive 5 years 10 months ago #36099

  • joseph125
  • joseph125's Avatar
  • Offline
  • New Member
  • Posts: 1
  • Karma: 0
huy guyss,,,,,
As well, you are looking to set up a Remote Access VPN in ASA parlance.
Site-to-site is from ASA to ASA (or compatible IPsec device). ... I'd much prefer my Windows DHCP server
to provide the addressing so there is a single scope. ...
but it's still an encrypted VPN tunnel?
What does the WebVPN do? ... :D :D :D
joseph
The administrator has disabled public write access.
Time to create page: 0.076 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup