cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
368
Views
0
Helpful
1
Replies

Remote VPN to connect (other locations) Internal Servers which are hosted over MPLS

Dear Team,

I have an issue regarding Remote VPN. Users would like to connect to one of our server which is in another country using Existing Remote VPN. Server is reachable via MPLS. Remote VPN configured on Cisco ASA 5505.

What are all changes required here?

Attached connectivity diagram.

Regards,

Yaseen

1 Reply 1

rizwanr74
Level 7
Level 7

Hello Br. Mohammed,

 

what you need to enable on your ASA are:

  1) An nat-exemption for the server IP-address or subnet belong to server that residing in another country i.e. nat-exemption between inside to outside interface of your ASA.

  2) If you have enable split-tunnel, then be sure add the remote-MPLS's subnet in the split-tunnel ACL.

  3) Advertise remote-access-users' vpn-dhcp pool address on site MPLS-router wherever your ASA is located, so that other MPLS sites would know where to send that traffic is back.

  4)  Last but not least be sure to add a static route on your ASA to push remote-MPLS's subnet to inside address on your routing device a switch or router.

   

Hope that helps.

Thanks

Rizwan Rafeek.