Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
334
Views
0
Helpful
1
Replies

Site-to-site and internet

fabiossilva
Level 1
Level 1

‎01-03-2008 06:03 AM - edited ‎03-09-2019 07:45 PM

Hi all, i have a scenario like this.

INTERNET

|

LAN_A

|

LAN_B -- 5505 ----- 5510 ----- 5505 -- LAN_C

With one ASA 5510 and two 5505, i can ping the networks LAN_A LAN_B and LAN_C, all works fine.

I need that the traffic from LAN B and LAN C to internet pass trough ASA 5510.

I dont want a direct traffic to internet from lanB and lanC, i want that this traffic pass trough my primary link in ASA 5510.

How can i do it? can anyone tell me something about how achieve it?

Regards.

Labels:
0 Helpful
1 Reply 1

jsivulka
Level 5
Level 5

‎01-09-2008 06:34 AM

Traffic direct to the Internet must be NATed. It is not possible to send all the traffic to the central ASA and then accesses have access to the internet. The ASA will not redirect traffic out the same interface the traffic came in on. Use access-list.

0 Helpful
Customers Also Viewed These Support Documents