I am trying to change my split tunnel (with internet access) into a full tunnel with internet hairpin so I can VPN into a remote ASA and go out to the internet through that ASA.
The ASA I am using is a 5506-x.
I have entered the tunnelall and same-security-traffic permit intra-interface.
I think my NAT config is where the issue is.
I want my traffic to go from VPN client to remote ASA and out to Modem -- Then to Internet with internet access.
VPN client with anyconnect [outside int(xx.xxx.xxx.245)
|
[vlan int of sw(10.20.30.1) Switch [outside int of sw(200.1.1.1) ------------ [inside int of asa(200.1.1.2) ASA [outside int of asa(xx.xxx.xxx.244) --------- Modem (xx.xxx.xx.241) -------- Internet
.png "sconstantine"){kind=avatar}