Chapter 12
Scenario: Site-to-Site VPN Configuration
Information to Have Available
Configuring the Site-to-Site VPN
Configuring the Security Appliance at the Local Site
Note
78-19186-01
Before you begin the configuration procedure, obtain the following information:
IP address of the remote adaptive security appliance peer
•
IP addresses of local hosts and networks permitted to use the tunnel to
•
communicate with resources at the remote site
IP addresses of remote hosts and networks permitted to use the tunnel to
•
communicate with local resources
This section describes how to use the ASDM VPN Wizard to configure the
adaptive security appliance for a site-to-site VPN.
This section includes the following topics:
Configuring the Security Appliance at the Local Site, page 12-3
•
Providing Information About the Remote VPN Peer, page 12-5
•
Configuring the IKE Policy, page 12-6
•
Configuring IPsec Encryption and Authentication Parameters, page 12-8
•
Specifying Hosts and Networks, page 12-9
•
Viewing VPN Attributes and Completing the Wizard, page 12-10
•
The following sections provide detailed instructions for how to perform each
configuration step.
The adaptive security appliance at the first site is referred to as Security
Appliance 1 in this scenario.
Implementing the Site-to-Site Scenario
Cisco ASA 5500 Series Getting Started Guide
12-3