VPN site to site (ASA and VMware vShield)

thorchin — Wed, 12 Oct 2016 18:10:56 GMT

Hi, i need configure VPN tunnel between ASA and VMware vShield Edge. The configuration is fine, between to sides the tunnel is up, but the servers in both side don't have comunication. So, my question is.. What are the requieriment for servers can comunicate?

These are the configuration:

- I configure static route in ASA for can make connection with remote LAN (internal LAN)

# route outside IP_REMOTE_LAN_INTERNAL IP_REMOTE_PUBLIC_IP

- I configure ACL for crypto map where permit local internal lan traffic to remote internal lan traffic

# access-list name extended permit ip LOCAL_LAN REMOTE_LAN

- The internal remote and local LAN, don't overlies IP network address.

Thanks in advanced, regards!

Re: VPN site to site (ASA and VMware vShield)

thorchin — Thu, 13 Oct 2016 11:13:18 GMT

Hi,

The problem was, i forget rule bypass NAT . So, this rule is fixed the connections between the servers in both sides.

nat (inside) 0 access-list ACL_NAME

Regards!

topic Re: VPN site to site (ASA and VMware vShield) in Network Security

VPN site to site (ASA and VMware vShield)

Re: VPN site to site (ASA and VMware vShield)