04-15-2009 01:08 PM - edited 03-06-2019 05:11 AM
Interesting will not pass through vpn even if any is specified.
If anyone know why please respond.
Thank You....
04-15-2009 01:29 PM
joseph,
Would you please provide more information regarding this issue?
Are you using site-to-site vpn?
Are they cisco ASA 5520?
Toshi
04-15-2009 01:39 PM
Yes,
I am using site-to-site.
I am using a 5520 and connecting to a remote site using a 5505.
It seems that only trafic that originates form subnets that are directly connected to the 5520 will only pass even when I define the source as any.
I have used other vpn clients and it work perfectly using the same interesting trafic config (Openswan to 5505).
I do appreciate your time...
Thank You...
04-15-2009 01:48 PM
joseph,
Do you have other networks behind ASA5520 and you already configured them as interesting traffic?
Would you please post the configuration on ASA5520? Excluding sensitive information.
Toshi
04-16-2009 07:31 AM
04-16-2009 07:53 AM
Joe,
Is there a layer3 device between old nets and new nets? Does this device have a route to 10.10.170.0(remote-end) pointing to ASA5520? Does ASA5520 have routes of old nets to route them back to Layer3 device?
Toshi
04-16-2009 08:03 AM
Thank You .... Toshi
I had a route from my Layer3 device to the 5520 but did not have them back the other direction.
Thanks again...!
Joe...
04-16-2009 08:05 AM
Joe,
I have no doubt why ASA is pretty cool.(grin)
Good job. let me know how things work out.
Toshi
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide