10-04-2016 08:28 AM
Hi,
I have been looking a lot for a answer to this question and I just found concepts rather than configurations.
I need to remove this line from the ASA configuration:
route outside 0.0.0.0 0.0.0.0 190.181.X.X 1
I am actually using this interface to make two VPNs.
We have a different connection to access the internet, so this firewall is only being used to allow VPN connections.
How can I make this ASA to just respond to the requests VPN clients do?
What for? Well, I need that the VPN Clients (that redirects all the traffic through the VPN) can use a different internet connection here. (Which is in another firewall)
Regards
Miguel
10-04-2016 09:42 AM
Hello Miguel-
The FW needs a default rout so it knows how to route packets to destinations that are not known to it. Thus, you cannot remove it :)
If your goal is to use this FW for VPN only then you can restrict all other access through simple ACLs that would only allow the VPN related traffic and block everything else.
I hope this helps!
Thank you for rating helpful posts!
10-04-2016 03:07 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide