ASA 8.3 static - dynamic L2L

Hello

We have currently a Hub - installation has spoken with many vpn lan-to-lan configured static-static tunnels.

Asked me to set up a vpn from the Hub to a remote site using the dhcp protocol to get its address by peers.

I looked for an answer to this, but all I found that shows the dynamic map applied to the external interface.

The normal map is currently applied, and I don't think that multiple no are allowed?  I can't test, because it's a working environment.

So my query is, how to add this config without affecting any of the current connections?

If not, is it possible to configure isakmp identity 1 phase like "hostname" presents a special connection (all others use 'address') and get them to use a dyndns Setup?

This configuration should be ok. Maybe you need to expand further with a group strategy according to your needs (VPN-filter or...).

--
Don't stop once you have upgraded your network! Improve the world by lending money to low-income workers:
http://www.Kiva.org/invitedBy/karsteni

Tags: Cisco Security

Similar Questions

  • ASA - impossible to configure dynamic IP distance to central public static IP VPN

    Hello

    I'm trying to set up a VPN between an ASA5505 on remote Central with static IP and an ASA Site connected to a router with a dynamic IP address.

    I tried tp follow the example site named Cisco "PIX / ASA 7.x IPsec dynamic to static PIX to PIX with NAT and VPN Client Configuration example" (http://cisco.com/en/US/products/ps6120/products_configuration_example09186a00805733df.shtml), but it does not work.

    The problem is that when I generate traffic, the ASA central got the message (Remote_Dynamic_IP is just to remove the real IP):

    01 Jul 10:24:24 [IKEv1]: IP = Remote_Dynamic_IP, error during load processing: payload ID: 1

    01 Jul 10:24:24 [IKEv1]: IP = Remote_Dynamic_IP, Removing peer to peer table has not, no match!

    01 Jul 10:24:24 [IKEv1]: IP = Remote_Dynamic_IP, error: cannot delete PeerTblEntry

    01 Jul 10:24:31 [IKEv1]: IP = Remote_Dynamic_IP, error during load processing: payload ID: 1

    01 Jul 10:24:31 [IKEv1]: IP = Remote_Dynamic_IP, Removing peer to peer table has not, no match!

    01 Jul 10:24:31 [IKEv1]: IP = Remote_Dynamic_IP, error: cannot delete PeerTblEntry

    The remote and remote router asa are connected on a network with fixed addresses, i.e.:

    dynamic_ip--> router<--static_ip(E.F.G.1)--static_ip(E.F.G.2>