Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
734
Views
3
Helpful
2
Replies

remote access vpn traffic

Go to solution
ShareefKooliyodan0444
Level 1
Level 1

‎09-13-2023 11:11 PM - edited ‎09-13-2023 11:18 PM

Hello

I have remote access vpn (Local) to my origination and its working fine . 

how I can achieve this  after Rvpn connected , the internet from my client pc should be route via my organization. i mean all traffic from my client pc should go via origination .

can i get any solution please to achieve this please ...

my os version is 7.0.2  cisco firepower also managing from fmc. 

 

0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
dwillia5@highpoint.edu
Level 1
Level 1

‎09-15-2023 03:02 AM

Shareef,

Most likely this is an issue with your tunnel setting on the RA VPN.  If you want all traffic to go through your organization, you have to select that in the connection profile of your VPN.  Go to Devices>Remote Access.  From there, click on the connection profile you want to edit and then click on edit group policy.  On the group policy screen, you will find the split tunnel information under "General."

dwillia5highpointedu_0-1694772136402.png

 

 

View solution in original post

Go to solution
Marius Gunnerud
VIP
VIP

‎09-15-2023 03:19 AM

You need to configure the RAVPN to be tunnel-all and not split-tunnel.  In addition to this you will need a NAT statement that will translate RAVPN users to the outside interface IP (or another public IP).  so the nat statement would have source interface outside, destination interface outside. Also, depending on if you have set up RAVPN to bypass the interface ACL or not, you might need to allow access from the RAVPN subnet to any / internet.

You can refer to the following link for more information on setting up RAVPN.  But as you have this already set up you might just want to focus on the "hair-pinning" part.

https://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/215875-configure-anyconnect-vpn-client-on-ftd.html

 

--
Please remember to select a correct answer and rate helpful posts

View solution in original post

2 Replies 2

Go to solution
dwillia5@highpoint.edu
Level 1
Level 1

‎09-15-2023 03:02 AM

Shareef,

Most likely this is an issue with your tunnel setting on the RA VPN.  If you want all traffic to go through your organization, you have to select that in the connection profile of your VPN.  Go to Devices>Remote Access.  From there, click on the connection profile you want to edit and then click on edit group policy.  On the group policy screen, you will find the split tunnel information under "General."

dwillia5highpointedu_0-1694772136402.png

 

 

Go to solution
Marius Gunnerud
VIP
VIP

‎09-15-2023 03:19 AM

You need to configure the RAVPN to be tunnel-all and not split-tunnel.  In addition to this you will need a NAT statement that will translate RAVPN users to the outside interface IP (or another public IP).  so the nat statement would have source interface outside, destination interface outside. Also, depending on if you have set up RAVPN to bypass the interface ACL or not, you might need to allow access from the RAVPN subnet to any / internet.

You can refer to the following link for more information on setting up RAVPN.  But as you have this already set up you might just want to focus on the "hair-pinning" part.

https://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/215875-configure-anyconnect-vpn-client-on-ftd.html

 

--
Please remember to select a correct answer and rate helpful posts
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card