Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Traffice through two vpn`s.

I hope somebody can helping my with this one:

I have make two VPN IPSEC tunnels from different location and terminate it on the ASA 5505. (VPN A and VPN C)

Is it possible to forwarding traffic from location A through the ASA5505 (Location B) and then through Location C.

Location A 192.168.10.0/24

Location B 192.168.125.0/24

Location C 172.30.10.0/24

I want make an connection from 192.168.10.0/24 to 172.30.10.0/24 through the two VPN`s.

Kind Regards

3 REPLIES

Re: Traffice through two vpn`s.

Bart,

Yes it's very possible, just configure the below into the ASA5505:-

same-security-traffic permit intra-interface

Also be sure to amend your no-nat rules, to and from the network subnets.

HTH>

Re: Traffice through two vpn`s.

see the following link will guid u step by step to achive what u want

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00807f9a89.shtml

good luck

please, if helpful Rate

Hall of Fame Super Silver

Re: Traffice through two vpn`s.

Bart

To receive traffic from a VPN (or other source) on an interface and to then send that traffic back out the same interface is sometimes referred to as hairpinning and is what is required to support connection from A to C. By default the ASA does not allow hairpinning. But there are configuration commands that you can use to enable this. Try these commands on your ASA:

same-security-traffic permit inter-interface

same-security-traffic permit intra-interface

They should permit the traffic from A to C.

HTH

Rick

115
Views
0
Helpful
3
Replies
CreatePlease to create content