09-05-2007 05:30 AM - edited 03-11-2019 04:07 AM
Hi,
we are using site to site vpn between three sites/offices using ASA 5510.Now for outside connection, we have configured remote vpn and its working fine with the local site where its connecting/terminated but could not able to ping/connect other 2 remote sites which are working fine on L2l vpn.
09-09-2007 05:22 AM
You need to add the spoke to spoke networks to the acl's for ipsec and nonat traffic matching. On both ends of the L2L tunnels. Also, if your doing split-tunneling add the networks to that acl as well.
Then you need this command to allow haripining.
same-security-traffic permit intra-interface
See these links for detail instructions on doing spoke->spoke tunnels.
Thanks,
Chad
Please rate if helpful!
09-10-2007 02:45 AM
Hi cpembleton,
Thanks for the update.
It's solve all our problems
Thanks Again.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: