Question

Locked

two tunnels on one outside interface

By alla19.l ·
Tags: Security
Hello, i have asa 5505 8.2
I want to use two vpn tunnels at the same time.
One is for cisco vpn client and one for android client (l2tp)



In this configuration, alternately running one or another vpn

crypto ipsec transform-set FirstSet esp-3des esp-md5-hmac
crypto ipsec transform-set trans esp-3des esp-sha-hmac
crypto ipsec transform-set trans mode transport
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000

crypto dynamic-map dyno 10 set transform-set trans
crypto dynamic-map dyn1 1 set transform-set FirstSet
crypto dynamic-map dyn1 1 set reverse-route

crypto map vpn 65535 ipsec-isakmp dynamic dyno
crypto map mymap 1 ipsec-isakmp dynamic dyn1
crypto map vpn interface outside





I tried to fix by making like this:

crypto dynamic-map dyno 10 set transform-set trans
crypto dynamic-map dyn1 1 set transform-set FirstSet
crypto dynamic-map dyn1 1 set reverse-route

crypto map outside_map 65534 ipsec-isakmp dynamic dyn1
crypto map outside_map 65535 ipsec-isakmp dynamic dyno
crypto map outside_map interface outside

I attached two different crypto dynamic-map: dyno and dyn1 at one crypto
map outside_map with different sequence numbers, the result - still at the
same time I can not connect through the Cisco VPN Client, and with android
phone (l2tp). Only connect via Cisco VPN Client.

This conversation is currently closed to new comments.

2 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Answers

Share your knowledge
Back to Security Forum
2 total posts (Page 1 of 1)  

Related Discussions

Related Forums