Announcement

Collapse
No announcement yet.

How to Create a VPN site-to-site IPsec Connection Between MS Remote access & ASA?

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • How to Create a VPN site-to-site IPsec Connection Between MS Remote access & ASA?

    How to Create a VPN site-to-site IPsec Tunnel Mode Connection Between MS routing and remote accessand a Cisco ASA Firewall?

    [Moderator edit. Please not the above is a link and not a question]
    Last edited by bustanji83; 7th August 2008, 09:52.

  • #2
    Re: How to Create a VPN site-to-site IPsec Connection Between MS Remote access & ASA?

    Have you bothered to do any research at all?
    The search function on the cisco site, whilst not brilliant, usually brings up examples of configs you could start with.
    Tried too?
    Apologies if you have tried but if this is the case can you post what you have tried and error messages?


    http://www.cisco.com/en/US/products/...80143a5d.shtml
    cheers
    Andy

    Please read this before you post:


    Quis custodiet ipsos custodes?

    Comment


    • #3
      Re: How to Create a VPN site-to-site IPsec Connection Between MS Remote access & ASA?

      Originally posted by AndyJG247 View Post
      Have you bothered to do any research at all?
      The search function on the cisco site, whilst not brilliant, usually brings up examples of configs you could start with.
      Tried too?
      Apologies if you have tried but if this is the case can you post what you have tried and error messages?


      http://www.cisco.com/en/US/products/...80143a5d.shtml
      He's actually sharing a solution with us. His post has got a link to the solution.

      @Bustanji83

      Thanks for the info, but can you change the Thread title next time you post a solution so it doesn't look like a question or a request for help.


      Cheers
      Caesar's cipher - 3

      ZKHQ BRX HYHQWXDOOB GHFLSKHU WKLV BRX ZLOO UHDOLVH LW ZDV D ZDVWH RI WLPH!

      SFX JNRS FC U6 MNGR

      Comment


      • #4
        Re: How to Create a VPN site-to-site IPsec Connection Between MS Remote access & ASA?

        Erk. Sorry bustanji83, didn't see that as a link at all. Thanks L4ndy!
        cheers
        Andy

        Please read this before you post:


        Quis custodiet ipsos custodes?

        Comment


        • #5
          Re: How to Create a VPN site-to-site IPsec Connection Between MS Remote access & ASA?

          we user microsoft windows 2000 with routing and remote access

          the senario is:

          My site (MS routing and remote access ) -------------------------- Remote site (ASA Cisco)


          · An IPSec Tunnel has been configured on the ASA firewall in Remote Site is:
          ü Peer/Destination IP address: *.*.*.* (mY EXTERNAL ip)
          ü ISAKMP Policy Parameters
          1. Transform: ESP
          2. Encryption: DES
          3. Hash: SHA
          4. Authentication: Preshared Key “kEY2008”
          ü Interesting Traffic to be encrypted: Source Network:172.27.0.0/16 and Destination Network: 192.168.168.0/24

          · An IPSEC Security policy needs to be created on MY OFFICE to establish the tunnel as per below configuration:
          ü Tunnel Endpoint: ASA Outside Interface remote office IP/27
          ü IP Security Rules
          1. remote office-my office
          · IP Filter List: Pune-RO Amman List
          o Source Network: 172.27.0.0/16 Destination Network: 192.168.168.0/24
          · Tunnel Endpoint
          o RO Amman VPN Server: my office ip
          · Filter Action: apply IPSEC policy as per below parameters
          o Transform: ESP
          o Encryption: DES
          o Hash: SHA
          o Key Lifetime: 28800

          · Authentication
          o Preshared Key “PuneKey2K8”

          2. my office - remote office
          · IP Filter List: RO Amman-Pune List
          o Source Network: 192.168.168.0/24 Destination Network: 172.27.0.0/16
          · Tunnel Endpoint:
          o ASA Outside Interface remote office IP
          · Filter Action: apply IPSEC policy as per below parameters
          o Transform: ESP
          o Encryption: DES
          o Hash: SHA
          o Key Lifetime: 28800
          · Authentication
          o Preshared Key “kEY2008”

          · Access Lists need to be applied on the firewall as per below:
          o access-list outside_acl extended permit ah host remote office IP host my office IP
          o access-list outside_acl extended permit esp host remote office IP host my office IP
          o access-list outside_acl extended permit udp host remote office IP host my office IP eq isakmp

          Comment


          • #6
            Re: How to Create a VPN site-to-site IPsec Connection Between MS Remote access & ASA?

            My Infrastructure

            MY VPN Server ------------------- FW ----- internet ----- Remote VPN
            192.168.11.1 MY VPN Real IP

            Comment


            • #7
              Re: How to Create a VPN site-to-site IPsec Connection Between MS Remote access & ASA?

              I am getting a bit confused by this thread??????

              Are you asking for help or are you sharing your setup with us????
              Caesar's cipher - 3

              ZKHQ BRX HYHQWXDOOB GHFLSKHU WKLV BRX ZLOO UHDOLVH LW ZDV D ZDVWH RI WLPH!

              SFX JNRS FC U6 MNGR

              Comment


              • #8
                Re: How to Create a VPN site-to-site IPsec Connection Between MS Remote access & ASA?

                i need your help
                i create a security police return to prvious post but the vpn not worked

                Comment


                • #9
                  Re: How to Create a VPN site-to-site IPsec Connection Between MS Remote access & ASA?

                  I fine a document to solved this issue

                  http://support.microsoft.com/kb/252735

                  Regards

                  Comment


                  • #10
                    Re: How to Create a VPN site-to-site IPsec Connection Between MS Remote access & ASA?

                    Glad you sorted it and thanks for letting us know the fix.
                    If I could recommend posting a bit more of an explanation as to what you want next time it may help. Glad it works now anyway though
                    cheers
                    Andy

                    Please read this before you post:


                    Quis custodiet ipsos custodes?

                    Comment


                    • #11
                      Re: How to Create a VPN site-to-site IPsec Connection Between MS Remote access & ASA?

                      thx alot for all

                      Comment

                      Working...
                      X