Advertisement
Scenario 2: Site-to-Site VPN Configuration
Site-to-site VPN (Virtual Private Networking) features provided by the security appliance enable
businesses to extend their networks across low-cost public Internet connections to business partners
and remote offices worldwide while maintaining their network security. A VPN connection enables
you to send data from one location to another over a secure connection, or "tunnel," first by
authenticating both ends of the connection, and then by automatically encrypting all data sent between
the two sites.
Figure 3 shows an example VPN tunnel between two security appliances.
Figure 3
Network Layout for Site-to-Site VPN Configuration Scenario
Site A
Inside
10.10.10.0
Creating a VPN connection such as the one in the above illustration requires you to configure two
security appliances, one on each side of the connection.
ASDM provides an easy-to-use configuration wizard to guide you quickly through the process of
configuring a site-to-site VPN in a few simple steps.
Step 1: Configure the PIX security appliance at the first site.
Configure the security appliance at the first site, which in this scenario is PIX security appliance 1
(from this point forward referred to as PIX 1).
1. Launch ASDM by entering the factory default IP address in the address field of a web browser:
https://192.168.1.1/admin.
2. In the main ASDM page, choose the VPN Wizard option from the Wizards drop-down menu.
ASDM opens the first VPN Wizard page.
PIX security
appliance 1
Outside
1.1.1.1
PIX security
appliance 2
Outside
Internet
2.2.2.2
Site B
Inside
20.20.20.0
19
Advertisement
