×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Route all branch traffic thru IPSEC tunnel to HQ

Unanswered Question
Oct 2nd, 2014
User Badges:

We have site to site VPN using Cisco ASA. If I would like to route all the traffic through tunnel mean included internet in site B (branch) need to go out from site A (HQ)?

The cisco ASA able to support this kind of request? if yes any sample configuration for this?

 

 

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Marius Gunnerud Fri, 10/03/2014 - 03:58
User Badges:
  • Red, 2250 points or more
  • Cisco Designated VIP,

    2017 Firewalling

This is a very common setup.  All you need to do is when configuring the crypto access-lists specify the destination as any at the branch office and at the HQ specify the source as any.  for example:

HQ

access-list S2S_VPN permit ip any 192.168.1.0 255.255.255.0

Branch

access-list S2S_VPN permit ip 192.168.1.0 255.255.255.0 any

--

Please remember to select a correct answer and rate helpful posts

Actions

This Discussion