Emulate a IPSEC Site-to-Site tunnel with Cisco ASA 5520 in GNS3 Preparation Phase 1

Background

We have multiple IPSEC Site-to-Site VPN tunnels within our company. The purpose of the VPN tunnels is to connect specific applications which are allocated within other companies. In production environments it is highly discouraged to change and test configurations. Because the Business these days does not accept any downtime.

Because of this i have chosen to emulate and learn the concepts of Site-to-Site IPSEC tunnels within a Lab environment.

Cisco ASA firewalls are expensive. For this reason I have chosen to emulate the software in GNS3.

GNS3 is free to download.
For more information follow this link: http://www.gns3.net/

Preparation in GNS3

Before we start with configuring the is a lot of preparation that needs to be done.

Step 1: What are the requirements? In this case a site-2-site IPSEC VPN. So we need 2 sites, 2 different networks, 2 firewalls in which 1 is a ASA.

Step 2: Design a Topology.

Topology

Topology 1

Lees verder

Configuring Clientless VPN for ASA 5505 part 1

Setting up clientless vpn for ASA 5505

It works probable the same on a ASA 5510, 5520, etc. However no guarantees.

Before we get started you need the following:

Internal network in this example will be: 10.110.0.0 /16

Outside network IP address will be: 192.168.10.250 (in normal usage the asa would have a public ip. But i am currently in a test lab where i have the asa behind another gateway.)

Lees verder