06-14-2014 02:11 PM
Hi I have remote vpn setup on my asa5505 and users can login using the Cisco vpn client and they can acess stuff on the local network and so on but i also need the client to reach each other over the vpn tunnel and I need some help with this part.
thanks.
06-14-2014 06:31 PM
Hi Roberto,
This is called U turning / Hairpinning , where you will perform these steps:-
1. Allow the remote subnets (behind l2l vpn peer) in split tunnel.
2. Allow "same-security-traffic permit intra-interface".
3. Allow the VPN pool subnet in crypto access-list on local and remote peer.
4. Nat exempt for VPN traffic (outside to outside) .
HTH.
Warm Regards,
Dinesh Moudgil
PS: Please mark the helpful posts.
06-15-2014 05:50 AM
Dinesh I have all setup except the last option I iwll try that and post thanks.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: