Is it possible to send all traffic through site to site VPN using SRP521W (on the other site ASA) ? Lets say, traffic to Internet from branch through HQ - site to site VPN between branch and HQ. I've tried to set up destination crypto policy entry to 0.0.0.0 0.0.0.0 but it's not accepted.
Thanks for the fast response. I'm wondering if there is any workaround.
The one I have on mind is to set about 253 static route entries with mask /8 (as far as I remember this is the shortest mask I can use on SRP500 S) and to set up, as a next hop for those routes, some core device in HQ ?
It's not possible to create a static route via an IPSec tunnel, so that is not an option I'm afraid.
The only workaround really, would be to have a proxy server at the main site and have all clients use that to access the Internet. You could then use the Internet Access Control feature to prevent local clients from accessing the Internet directly.
Hi every one!!!When you are configuring a remote VPN connection, there
are some steps that are lost on the path. Here you can see those steps.
A) In your Cisco device: 1. Ensure you don´t have any rule denying the
traffic between the device and the remote...
** Update **These and a number of other issues have been addressed in
SRP520 MR3. Please see https://supportforums.cisco.com/docs/DOC-13853
for details on how to access this code.There have been a number of
reports of the SRP500 becoming unresponsive afte...
STANDARDSOURCECOMMENTSEthernet RJ-45 connector pin number12345678IEEE
802.3afusing data pairsRXDC+RXDC+TXDC-sparespareTXDC-sparespareIndustry
Standard for Embedded POE(used by Cisco Catalyst Switches)IEEE
802.3afusing spare pairs RXRXTXDC+DC+TXDC-DC-Indus...