12-01-2007 04:33 PM - edited 03-03-2019 07:45 PM
I would like to configure ASA 5510 to allow VPN clients access to the network behind the firewall, IPsec vpn tunnels, and internet access.
Is that hairpinning? How do I configure to allow internet access?
It is already setup to allow access to the network, just not the internet.
Thanks.
12-01-2007 08:41 PM
Eric, from what I have read hairpining would be if you were using what is refer as public internet on a stick to allow vpn clients to asa outside internet without using split tunneling in asa. You could either use with split tunneling or outside nat enabling hairpining with same-security-traffic permit intra-interface
Configuring split tunneling
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080702999.shtml
Or public internet on a stick.
same-security-traffic permit intra-interface allows the traffic to exit out on the interface it was received on
global (outside) 1 interface
nat (outside) 1
rate any helpful post if it helps
HTH
Jorge
09-14-2008 10:46 PM
Your configuration issue is split tunnel, than say Jorge.
Hairpining is other concept.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: