01-06-2015 08:30 AM
Hi there
I have a AnyConnect VPN that terminates to an ASA on port Gi0/1..
On the same ASA I have a Site to Site VPN from port Gi0/1 (same port) to another firewall.
Can I route AnyConnect VPN traffic via the Site to Site vpn?
Regards
Mohamed
01-06-2015 12:00 PM
Yes. You need to add the AnyConnect Pool to the interesting traffic ACL and the TwiceNat rule.
Hope it helps.
01-07-2015 01:55 AM
Hi Collin
Thanks for your reply
When you say TwiceNat rule are you referring to the NAT-T in Crypto Map Entry on the site to site..
I have enabled this but when interesting traffic is generated it does not entry the SIte to Site VPN...
01-07-2015 08:16 AM
By TwiceNAT I mean the old NAT0, traffic that should not be NAT'd. Can you post your config?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide