ASA5520 ver8.0.4 VPN Hairpinning problem

Unanswered Question
Jun 5th, 2009
User Badges:


We've got and issue whereby site-to-site VPN communication seems to work without the "same-security-traffic permit intra-interface" command aplied. I'm terminatng the IPSEC VPN on a VPN-DMZ interface rather than outside. Additionally, I have disabled the "sysopt connection permit-vpn" to restrict traffic flow from the VPN's by way of ACL's.

What I need to know is there a bug in 8.0.4 that would allow this to happen?

Many Thanks,

Matt Smith.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion