Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
In a IPsec site to site VPN, can we use an external public IP as encryption domain. And will the traffic forwarded to that external public IP ?Here is a diagram to explain the scenario better.Host 10.x.x.70 does not have internet connectivity, it wan...
I have a VPN connection on my cisco asa 5510 device.Trying to do following:1) redirect all traffic coming from VPN tunnel on encryption domain(202.x.x.1) of VPN connection to a internet host (like example.com)VPN tunnel ==> encryption domain (202.x.x...
I have a cisco ASA 5510 device. I have confiured remote access VPN on it.It works fine, i can connect to hosts on INSIDE as well as DMZ, but i cannot connect to other clients that are connected to same VPN.For example i have to clients connected to V...
Right now my crypto map acl source is 'any'. If i give specific IP, then ipsec phase doesn't get through.
Here is current conf:
access-list outside_cryptomap_2 extended permit ip any host 10.x.x.70
You are suggesting:
access-list name extend...
HiI've attached a simple diagram [excuse my drawing skills ]so the goal is to establish tunnel with peer IPs 165.x.x.146 <==> 212.x.x.123Encryption domain IP (or source IP) on cisco asa side will be 203.x.x.143.10.x.x.70 will send traffic to 203.x....
HiNo, I don't have 2 interfaces connected to internet. It's only 1 interface (outside) connected to internet, with 1 static public IP + public address pool x.x.x.x/28And i cannot use split tunnelling because host behind VPN doesn't have internet (blo...
