We have a site where there are several remote buildings that connect through a VPN to the main office at that location, and the main office then connects to our larger WAN.
We split the tunnels at these remote locations so surfing and whatnot uses local bandwidth.
We want to filter the web surfing at these locations, and have a web filter set up at the main office for that site, but the ASA's are not able to connect to the URL filter on the other end of the VPN tunnel.
Is what we're trying to do a supported configuration?
We could set it up so the outside IP of the ASA's has access to the internal URL filter, but we're using transparent authentication and I'm concerned about passing user credentials through an non-secured connection.