Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
266
Views
0
Helpful
2
Replies

Remote VPN Users on asa5505

Roberto Kippins
Level 1
Level 1

‎06-14-2014 02:11 PM

Hi I have remote vpn setup on my asa5505 and users can login using the Cisco vpn client and they can acess stuff on the local network and so on but i also need the client to reach each other over the vpn tunnel and I need some help with this part.

 

thanks.

Labels:
0 Helpful
2 Replies 2

Dinesh Moudgil
Cisco Employee
Cisco Employee

‎06-14-2014 06:31 PM

Hi Roberto,

 

This is called U turning / Hairpinning , where you will perform these steps:-
1. Allow the remote subnets (behind l2l vpn peer) in split tunnel.
2. Allow "same-security-traffic permit intra-interface".
3. Allow the VPN pool subnet in crypto access-list on local and remote peer.
4. Nat exempt for VPN traffic (outside to outside) .

HTH.

Warm Regards,
Dinesh Moudgil

PS: Please mark the helpful posts.

Cisco Network Security Channel - https://www.youtube.com/c/CiscoNetSec/
0 Helpful

Roberto Kippins
Level 1
Level 1
In response to Dinesh Moudgil

‎06-15-2014 05:50 AM

Dinesh I have all setup except the last option I iwll try that and post thanks.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents