Remote Access VPN session default route

Answered Question
Feb 1st, 2010

ASA version 8.2.2

How do you assign remote access VPN sessions a unique default route?  Other than the default route assigned to the ASA.  For example, my VPN ASA (handles vpn sessions), defaults to the Internet.  I would like remote access VPN sessions to default the internal network first, then follow the default route to the Internet out a different firewall.

The ASA outside interface IP address is a public.  The inside is a 10.x.x.x private.  VPN clients are assigned 172.17.x.x.

Thanks

I have this problem too.
0 votes
Correct Answer by Yudong Wu about 6 years 10 months ago

added "tunneled" keyword after "route" command.

tunneled

Specifies route as the default tunnel gateway for VPN traffic.

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/qr.html#wp1767323

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
rmeans Tue, 02/02/2010 - 09:48

Thanks for the information.  After reading about the route...tunneled command and the features that will not be able (inspections), I think I will stick with what I currently have.

Thanks again.

Actions

This Discussion