Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
Community Member

Asa 5510 Access Public Servers from Remote Site-to-DummySite VPN


i ve Cisco Asa 5510 ( asa9.1(2) ) and several server behind it in DataCenter . two interfaces (DMZ,Outside) enabled and configured on it.

(lets assume public subnet :, DMZ subnet : )

i ve public subnet routed to Outside and NAT ed DMZ. i also configured hairpinning for DMZ servers to access their public FQDN.

everything works fine.

now one of my client needs to access my public Servers over site-to-site vpn via using my public servers real addresses

i didnt want to share with them my real local and real public subnet ip addresses.

instead i created a dummy network object/subinterface/vlan (lets say

than i told them my local net is so they entered this subnet to their routers as remote network for site-to-site vpn settings.

but my client subnet cannot reach my public servers using my public servers real addresses.

what should i do ?

any help would be appreciated.

thank you


Everyone's tags (4)
CreatePlease to create content