Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
585
Views
0
Helpful
1
Replies

Client VPN to access remote networks via ASA L2L connections

tngceo
Level 1
Level 1

‎06-27-2013 03:34 PM

I have an ASA 5520 with Cisco 5.X VPN clients. The ASA also has a number of permanent IPSEC L2L connections to other offices. I need the client VPN users to be able to access the remote networks via the ASA.

I added the remote networks to the split tunnels list for the client VPN policy, And I now see the networks in the client route list. But the clients cannot pass traffic to/from the remote networks. Do I also need to create outside to outside NAT Exemption rules? It's a little confusing to me, since the clients are getting an inside virtual IP from the assigned pool.

Labels:
0 Helpful
1 Reply 1

Michael Muenz
Level 5
Level 5

‎06-28-2013 01:09 AM

Yes, you need a NAT exemption. You can turn on debugging on the ASA and should get Asymetric NAT errors.

Michael

Please rate all helpful posts

Michael Please rate all helpful posts
0 Helpful
Customers Also Viewed These Support Documents