[c-nsp] pix vs asa
Ryan West
rwest at zyedge.com
Thu Aug 5 21:05:21 EDT 2010
Deric,
> -----Original Message-----
> From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-
> bounces at puck.nether.net] On Behalf Of Deric Kwok
> Sent: Thursday, August 05, 2010 8:46 PM
> Subject: [c-nsp] pix vs asa
>
> Hi all
>
> Just wandering whether any different to configure vpn in pix and asa
>
> Any example
>
There are plenty of examples on Cisco's site, a lot of the legacy PIX commands still work and will translate into the newer ASA style.
i.e. 'isakmp key <key> address x.x.x.x' will translate to:
tunnel-group x.x.x.x type ipsec-l2l
tunnel-group x.x.x.x ipsec-attributes
pre-shared-key <key>
Remote access VPNs are configured using a combination of the tunnel-group, group-policy and crypto map. Site to site tunnels are pretty much the same.
-ryan
More information about the cisco-nsp
mailing list