Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
676
Views
0
Helpful
1
Replies

Full Tunnel, Internet on a stick, Hair pinning, U-turn, SITE TO SITE IPSEC VPN ASA 5506

c4tom
Level 1
Level 1

‎10-28-2019 08:17 AM - edited ‎02-21-2020 09:47 PM

Hello,


I have a CIsco ASA 5506 VPN, I am trying to get a SIte-to-Site VPN working in Full tunnel mode so the remote network will have the same public internet IP as we do here locally.

 

I know this is a specialized configuration that goes by many names, some call it full tunnel , internet on a stick, hair pinning and even u-turning...

 

I was able to get this to work for anyconnect SSL clients, it is actually quite easy to do that way, however we would like to accomplish this with a site to site VPN

 

Can anyone assist?

thank you

Labels:
0 Helpful
1 Reply 1

c4tom
Level 1
Level 1

‎01-23-2020 12:11 PM

If anyone is interested, I ended up setting up a router running linux and configured openconnect to use the SSL VPN, andused ptables to share the connection with the rest of the router. that is how I was able to get a full tunnel site to site vpn going between a router and an ASA

 

 

0 Helpful
Customers Also Viewed These Support Documents