Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
266
Views
0
Helpful
2
Replies

Branch internet traffic thru corporate internet.

daredevil24
Level 1
Level 1

‎01-28-2009 03:44 AM - edited ‎03-04-2019 01:00 AM

Two branches are connected thru site-to-site VPN with corporate office.The requreiment is to move all the traffic to corporate office thru tunnel & restrict the internet traffic of branch from corporate security devices. - Pls suggest.

Labels:
0 Helpful
2 Replies 2

andrew.prince
Level 10
Level 10

‎01-28-2009 04:01 AM

Configure the branch layer 3 devices with a default route to point to the corperate core security devices.

HTH>

0 Helpful

netwalkr1
Level 1
Level 1

‎01-28-2009 09:15 AM

You have a couple of items to consider. The VPN termination device at the remote offices are going to need a way to to the Internet to establish the point-to-point tunnel to HQ. If the same device (ASA/PIX, etc...) is the default gateway for the remote office hosts you are going to need a route out to establish the VPN tunnel. You can create a host route for the HQ public IP (example: 4.4.4.4 255.255.255.255 via next hop router/modem. Then as Andrew suggested default route to the corporate security appliance. Another option is to force (AD group policy) your hosts to use a proxy server and route that proxy server through the tunnel to HQ.

HTH,

Shaun

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card