Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5987
Views
0
Helpful
2
Replies

Remote VPN to site-to-site vpn on ASA ?

Go to solution
jcattaneo
Level 1
Level 1

‎06-28-2011 07:01 AM

Hi,

I would like to know, if it's possible to have this configuration with an ASA5510 :

(1)- Remote access VPN (access by the outside interface)

(2)- Site to site VPN (same access interface)

The objective : the vpn users (1) can access to the distant server on vpn (2), and vice versa.

It's possible ? and what's the best practice to do ?

Thanks a lot !

J.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Nelson Rodrigues
Cisco Employee
Cisco Employee

‎06-28-2011 07:20 AM

Yes , you can do this. 

Thesame-security-traffic command permits traffic to enter and exit the same interface when used with the

intra-interfacekeyword, which enables spoke-to-spoke VPN support.

Here are some examples @

http://www.cisco.com/en/US/products/ps6120/prod_configuration_examples_list.html

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00807f9a89.shtml

PIX/ASA 7.X : Add a New Tunnel or Remote Access to an Existing L2L VPN

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a008046f307.shtml

PIX/ASA 7.x Enhanced Spoke-to-Client VPN with TACACS+ Authentication Configuration Example

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Nelson Rodrigues
Cisco Employee
Cisco Employee

‎06-28-2011 07:20 AM

Yes , you can do this. 

Thesame-security-traffic command permits traffic to enter and exit the same interface when used with the

intra-interfacekeyword, which enables spoke-to-spoke VPN support.

Here are some examples @

http://www.cisco.com/en/US/products/ps6120/prod_configuration_examples_list.html

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00807f9a89.shtml

PIX/ASA 7.X : Add a New Tunnel or Remote Access to an Existing L2L VPN

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a008046f307.shtml

PIX/ASA 7.x Enhanced Spoke-to-Client VPN with TACACS+ Authentication Configuration Example

0 Helpful

Go to solution
jcattaneo
Level 1
Level 1
In response to Nelson Rodrigues

‎06-29-2011 02:22 AM

Great, tks a lot !

0 Helpful
Customers Also Viewed These Support Documents