I have an ASA 5510. I have an interface with a security of 10 called "internetguest". We use this interface to connect vendors to the internet without accessing the "inside" network. These vendors have a need to access the "inside" network. I have our VPN setup to connect to our "outside" interface which is on the same ASA and a security of 0. How would I configure the ASA to allow VPN to the "outside" interface from the "internetguest" interface? I am tring to build the VPN tunnel from one interface to another on the same ASA. Let me know what other information you may need and thank you in advance for your time and effort.
If I understand you correct you need to access the inside network from your DMZ interface using VPN (i guess Remote Access). Well I doubt that the idea of passing the traffic through your DMZ interface and connecting to the outside interface works, but AFAIK you can activate vpn connectivity on your DMZ interface
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...