Chapter 8
Scenario: Site-to-Site VPN Configuration
Information to Have Available
Configuring the Site-to-Site VPN
Starting ASDM
78-17612-02
Before you begin the configuration procedure, obtain the following information:
IP address of the remote adaptive security appliance peer
•
IP addresses of local hosts and networks permitted to use the tunnel to
•
communicate with resources on the remote site
IP addresses of remote hosts and networks permitted to use the tunnel to
•
communicate with local resources
This section describes how to use the ASDM VPN Wizard to configure the
adaptive security appliance for a site-to-site VPN.
This section includes the following topics:
Starting ASDM, page 8-3
•
Configuring the Security Appliance at the Local Site, page 8-4
•
Providing Information About the Remote VPN Peer, page 8-6
•
Configuring the IKE Policy, page 8-7
•
Configuring IPSec Encryption and Authentication Parameters, page 8-9
•
Specifying Hosts and Networks, page 8-10
•
Viewing VPN Attributes and Completing the Wizard, page 8-11
•
The following sections provide detailed instructions for how to perform each
configuration step.
To run ASDM in a web browser, enter the factory default IP address in the address
field: https://192.168.1.1/admin/.
Make sure you add the "s" in "https," or the connection fails. HTTP over
Note
SSL (HTTPS) provides a secure connection between your browser and the
adaptive security appliance.
Implementing the Site-to-Site Scenario
Cisco ASA 5505 Getting Started Guide
8-3