Options
Site to site VPN between two 5505's
rsutton
Member Posts: 1,029 ■■■■■□□□□□
in CCNA & CCENT
I have a new client and am in the process of getting their two ASA firewalls talking over the WAN. They previously were talking until a few months ago when they switched ISP's, I am pretty sure that is when the VPN tunnel broke. I had hoped I could log in to the ASA and just update the VPN configuration with the new IP addresses however having done that I still don't have a working tunnel. Looking for help from the more knowledgeable.
Here are the three lines that referenced the old IP. I have updated them with the new IP:
crypto map VPN-Map 10 set peer <new ip>
tunnel-group <new ip> type ipsec-l2l
tunnel-group <new ip> ipsec-attributes
I can post running configs too if that helps.
TIA,
Ryan
Edit - added config files:
ASA #1
ASA #2
Here are the three lines that referenced the old IP. I have updated them with the new IP:
crypto map VPN-Map 10 set peer <new ip>
tunnel-group <new ip> type ipsec-l2l
tunnel-group <new ip> ipsec-attributes
I can post running configs too if that helps.
TIA,
Ryan
Edit - added config files:
ASA #1
ASA #2
Comments
-
Options
burbankmarc
Member Posts: 460
I don't see your peer referenced anywhere in the Sac_Clean ASA.