Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
292
Views
4
Helpful
2
Replies

Remote access vpn with site to site vpn

prashantrecon
Level 1
Level 1

‎03-22-2013 04:49 AM - edited ‎03-11-2019 06:18 PM

Hi All,

i have created a remote access vpn with local range 192.168.111.1-192.168.111.255

Can we now create site to site vpn with interaseting traafic as 192.168.111.1-192.168.111.255 as local with far end.(10.10.x.x )

one side had asa 8.2 and other side had asa 8.4.

Regards,

Prashant

Labels:
0 Helpful
2 Replies 2

Jouni Forss
VIP Alumni
VIP Alumni

‎03-22-2013 04:55 AM

Hi,

Do you mean that you have

  • A VPN Pool of 192.168.111.0/24
  • You want it to be able to connect to networks behind a new L2L VPN

If so, then I see no problem with it.

You will naturally require NAT configurations and define the interesting traffic

You will also need to make sure you have "same-security-traffic permit intra-interface" on the firewall with the VPN Client and L2L VPN configuration. This would enable the traffic to enter and leave the same interface which in this case is probably "outside" or something similiar

- Jouni

prashantrecon
Level 1
Level 1
In response to Jouni Forss

‎03-22-2013 06:18 AM

Thank you

The config i was missing was

same-security-traffic permit intra-interface"

It worked

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card