I have two /28 subnets A & B.
My main vpn peer ip is in subnet A, it is also my outside interface address.
I have free IP's in subnets A and B and id like to use one of them to host lan to lan my vpn connections.
How do I configure one of my free IP's as the vpn peer? I cannot find any options using ASDM or the CLI and I've been googling for hours!
Best Answer
As Inga alluded, you cannot setup the ASA do this. It does not support "ip aliases"; it has one, and only one address. There are no options to configure isakmp / ikev(1|2) on it's own address. (it's either enabled on an interface or not.)
(And if you get the bright idea to put a free address on a second interface, it won't allow subnets to overlap. However, you could assign "B" to it's own interface, but you'd still be terminating traffic to the ASA's interface address.)