06-22-2012 05:13 PM - edited 03-09-2019 11:51 PM
Hello guys,
I use 3 interfaces on an ASA 5510. First interface is Lan, Second interface is Outside, Third interface is ADSL
The Outside interface is used for VPN L2L and smtp traffic. (Leased line on router managed by ISP)
The Adsl interface is used for Http traffic. (Adsl Cisco router)
I use this configuration found on another forum subjet for routing.
route outside 0.0.0.0 0.0.0.0 x.x.x.x 1
route adsl 0.0.0.0 0.0.0.0 y.y.y.y 2
nat (inside) 1 0 0
global (outside) 1 interface
global (Adsl) 1 interface
static (Adsl,inside) tcp 0.0.0.0 www 0.0.0.0 www netmask 0.0.0.0
The problem is now I have an www intranet server on the VPN remote site.
How i can exempt the http traffic to the intranet server routed through Adsl interface?
Any help would be greatly appreciated.
Ali
06-23-2012 02:57 PM
Can you prepare a little diagram for what exactly you want to achieve?
06-25-2012 12:53 AM
Hello Karsten,
I hope it is more clear with this diagram.
Thanks
06-25-2012 12:46 AM
06-25-2012 01:14 AM
If there is only the remote-site reachable through the outside-interface, you should remove the outside-default-route and replace it with the dedicated route to the remote-network.
06-25-2012 01:27 AM
I use the outside interface for Smtp and all other traffic
06-25-2012 01:37 AM
Then you need something like policy-based routing. But that's not available on the ASA. An IOS-router could do that.
06-25-2012 04:44 PM
There is not another way?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide