I want to be sure if this is an working configuration:
"local site"
Int vlan x
description ** inside **
ip address 192.168.2.0/24
!
object network inside-local-network
subnet 192.168.2.0 255.255.255.0
!
object network inside-sslvpn-network
subnet 192.168.50.96 255.255.255.224
!
object network remote-network
subnet 192.168.1.0 255.255.255.0
!
nat (inside,outside) source static any any destination static inside-sslvpn-network inside-sslvpn-network
!
nat (inside,outside) source static inside-local-network inside-local-network destination static remote_network remote_network
nat (inside,outside) source static inside-local-network inside-local-network destination static inside-sslvpn-network inside-sslvpn-network
!
same-security-traffic permit intra-interface
i am using "split_ACL" as well:
access-list split extended permit ip object inside-local-network object inside-sslvpn-network
access-list split extended permit ip object inside-local-network object remote-network
****************************************************************************************************************************************
"remote site"
Int vlan x
description ** inside **
ip address 192.168.1.1/24
!
object network inside-local-network
subnet 192.168.1.0 255.255.255.0
!
object network inside-sslvpn-network
subnet 192.168.50.96 255.255.255.224
!
object network remote-network
subnet 192.168.2.0 255.255.255.0
!
nat (inside,outside) source static any any destination static inside-sslvpn-network inside-sslvpn-network
!
nat (inside,outside) source static inside-local-network inside-local-network destination static remote_network remote_network
nat (inside,outside) source static inside-local-network inside-local-network destination static inside-sslvpn-network
inside-sslvpn-network
!
same-security-traffic permit intra-interface
access-list split extended permit ip object inside-local-network object inside-sslvpn-network
access-list split extended permit ip object inside-local-network object remote-network
Am doing something wrong here guys?
