I've deployed the ASA fw for different purpose. One is for Internet access and the other for site-to-site VPN connection. All the internal user's default gw is pointing to the Internet one, and this one contain the specific static route back to the VPN one. The command "same-security-traffic permit intra" already in placed, but the ASA still can not redirect the traffic to the VPN one for remote site connection. Both ASA are running 7.2(2).