Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
340
Views
0
Helpful
1
Replies

No internet access thru site to site VPN tunnel on ASA

DAI4Cisco
Level 1
Level 1

‎10-15-2008 03:43 PM - edited ‎02-21-2020 03:03 AM

We have a complicated set up of 4 ASA5505's that all have site to site tunnels to a 5th ASA5505 which is connected to our LAN. All the L2L tunnels are up and can access network resources, but none of them can access the internet. I want internet traffic to pass thru the vpn tunnel and return thru the tunnel. Can someone point me to an example of this setup?

0 Helpful
1 Reply 1

acomiskey
Level 10
Level 10

‎10-16-2008 05:00 AM

Sure, on the main site ASA, you can set something up like this....

same-security-traffic permit intra-interface

global (outside) 1 interface

nat (outside) 1

nat (outside) 1

etc...

You will also need to confirm that all traffic from the remote sites is traversing the tunnel. Something like....

Remote ASA

access-list crypto1 extended permit ip any

access-list inside_nat0_outbound extended permit ip any

Main ASA

access-list crypto1 extended permit ip any

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card