06-14-2014 02:11 PM
Hi I have remote vpn setup on my asa5505 and users can login using the Cisco vpn client and they can acess stuff on the local network and so on but i also need the client to reach each other over the vpn tunnel and I need some help with this part.
thanks.
06-14-2014 06:31 PM
Hi Roberto,
This is called U turning / Hairpinning , where you will perform these steps:-
1. Allow the remote subnets (behind l2l vpn peer) in split tunnel.
2. Allow "same-security-traffic permit intra-interface".
3. Allow the VPN pool subnet in crypto access-list on local and remote peer.
4. Nat exempt for VPN traffic (outside to outside) .
HTH.
Warm Regards,
Dinesh Moudgil
PS: Please mark the helpful posts.
06-15-2014 05:50 AM
Dinesh I have all setup except the last option I iwll try that and post thanks.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide