I have two isp's connected on my ASA (outside and outside2), and SLA ISP backup is configured, now the default gateway for internet access is outside interface.
Recently i have configured SSL Vpn on my other interface (outside2) , and it is working fine, after few days, i got a requirement from my boss, that he need to connect to exchange server, which is over the internet, after successfully connected to SSL vpn, i know there is a concept called client u-turn in cisco, so with that i have configured, the following
access-list 101 extended permit ip 10.10.10.0 255.255.255.0 host 18.104.22.168 **(10.10.10.0/24 is the ssl vpn client pool, 22.214.171.124 is the ip of exchange server).
nat (ouside2) 3 access-list 101
global (outside2) 3 126.96.36.199 ** ( 188.8.131.52 is one of the ip of my outside2 wan pool)
same-security-traffic permit intra-interface
But the above configuration does not works for my requirement.
Kindly help , for the same.