Monday, October 28, 2019

No Remote VPN Connections

So I configured a site-site vpn tunnel in ASDM on an ASA 5512.

outside interface to outside interface - protected networks (local - 81, 71)(Remote - 80, 70) IKEv2 Pre-shared key

vice versa at HQ site ---------- VPN connection is fine

---HQ--

outside interface 70.80.90.100

inside interface 192.168.80.17 (80_NET)

inside interface 192.168.70.17 (70_NET)

---remote site--

outside interface 100.90.80.70

inside interface 192.168.81.254 (81_NET)

inside interface 192.168.71.254 (71_NET)

I need a bidirectional connection from 70_NET to 71_NET

80_NET and 81_NET should be able to hit everything.

Current ACL rules:

81 interface incoming rule: Source - 81_NET Destination any permit ip

71 interface incoming rule: Source - 71_NET Destination 70_NET, 80_NET permit ip

80 interface incoming rule: Source - 80_NET Destination any permit ip

70 interface incoming rule: Source - 70_NET Destination 71_NET, 81_NET permit ip

---------- Can any let me know if this is right or there's anything I need to add?



at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)