Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
456
Views
1
Helpful
1
Replies

Cannot get Anyconnect Hairpinning to work via FMC

Go to solution
red2play
Level 1
Level 1

‎10-28-2023 08:20 PM

We need our users to have a Whitelisted IP address to access certain content.  However, even when I choose "Allow all traffic over tunnel", I still can't get the Hairpinning to work.  How can I make this work?

connection.png

connection2.png

anyconnect profile.gif

Labels:
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎10-29-2023 01:14 AM

@red2play you intend to route traffic to public destinations through the VPN for your remote users?

You will need an auto NAT rule for the RAVPN network, the source and destination interface is your outside interface.

You will need an ACP rule to permit this traffic from the RAVPN network to those destinations.

If you still have a problem run packet-tracer and/or system support firewall-engine-debug from the FTD CLI to provide more information.

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Rob Ingram
VIP
VIP

‎10-29-2023 01:14 AM

@red2play you intend to route traffic to public destinations through the VPN for your remote users?

You will need an auto NAT rule for the RAVPN network, the source and destination interface is your outside interface.

You will need an ACP rule to permit this traffic from the RAVPN network to those destinations.

If you still have a problem run packet-tracer and/or system support firewall-engine-debug from the FTD CLI to provide more information.

0 Helpful
Customers Also Viewed These Support Documents