cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
420
Views
0
Helpful
1
Replies

SSL VPN from inside on outside interface

rcordeiro
Level 1
Level 1

Hi all,

First of all I know I can activate the SSL on the inside interface but that is not what I need or want.

Scenario:

Several interfaces and VLANs on the ASA (running 8.0.5).

SSL VPN configured and activated on the outside interface.

Need to know if it's possible to access the SSL VPN from other interfaces directly to the outside interface IP address, something like hairpin.

Can be a solution (if it exists) with or without NAT (I have public IPs on some interfaces).

This will be useful for users that can connect from any interface (inside, outside or other) and with only one DNS record I will be able to manage everything.

Regards

PS: Is DNS doctoring an option? From the tests I have done it doesn't work.

Message was edited by: rcordeiro

1 Accepted Solution

Accepted Solutions

Nagaraja Thanthry
Cisco Employee
Cisco Employee

Hello,

Unfortunately, it is not possible. You cannot communicate with an ASA interface that is not directly connected through the firewall.

Regards,

NT

View solution in original post

1 Reply 1

Nagaraja Thanthry
Cisco Employee
Cisco Employee

Hello,

Unfortunately, it is not possible. You cannot communicate with an ASA interface that is not directly connected through the firewall.

Regards,

NT