Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have been fighting this for longer than I would want to admit. So any help would be greatly appreciatedBasically we need to connect a client via IPSEC to an ASA 5510 in Brazil and then using the same 5510 send that traffic source and destination N...
I have been fighting this for longer than I would want to admit. So any help would be greatly appreciatedBasically we need to connect a client via IPSEC to an ASA 5510 in Brazil and then using the same 5510 send that traffic source and destination N...
Here is a trace:5510# packet-tracer input outside tcp 1.1.1.2 1025 2.2.2.2 6011Phase: 1Type: FLOW-LOOKUPSubtype:Result: ALLOWConfig:Additional Information:Found no matching flow, creating a new flowPhase: 2Type: UN-NATSubtype: staticResult: ALLOWConf...
Manish,I went ahead and tried that and it is still not working. If you look at the diagram the inside interface should really never come in to the picture.However, I am almost positive that it has to do with the source NAT (global) not being applied...
The problem is that we never want the traffic to be decrypted and placed on the inside interface. If that happens it will have no where to go to be routed back to the US. Basically what we want to happen is this:Inbound IPSEC traffic hits ASA -> de...
Thank you for the reply.I am not sure I understand why the VPN would place the traffic on the inside. I thought that the order of operations was for it to decrypt the traffic, perform NAT translation, routing (points back to the outside in this case...
