07-13-2012 12:27 PM
My first thought was no, but I realize the ASA has many tricks... Here's the scenario. Our HQ office has an ASA 5510 with full access to internal and external IP's. We have a small group of remote users that are working from a shared office suite and they only have Internet access by way of internal default gateway. Using a VPN client is not desirable due to many other devices requiring access to HQ. Is there a way to create a site-to-site VPN from this remote office space back to HQ (ASA 5510) if they have no access to the public IP address on their end?
Thanks!
07-13-2012 01:03 PM
Hi,
If you are coming via internet, you need to have a public ip (static/dhcp) in order to establish s2s vpn. Not to side track your questions, but even if there is a way to to do this, your shared office user traffic will be traversing through rest of the users traffic (till the point of encryption) and this is wil be a security risk.
Thx
MS
07-13-2012 01:19 PM
Hi,
Both VPN endpoints must be able to reach each other.
In order words, basic connectivity is required.
Please keep us posted.
Thanks.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide