Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ASA 5510 Internet Connection Dedicated VPN

I have an ASA 5510 with a second internet connection on its way.  I would like to have one internet connection dedicated to my Site-to-Site VPN traffic and the other left to handle public internet traffic.   I know I can do this with a static route but I noticed today the "tunneled" option.  How exactly does the tunneled option work and would it work better for my specific situation?

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: ASA 5510 Internet Connection Dedicated VPN

Rob,

(Simplification) "Tunneled" option is indicating what to do with traffic once it has been decapsulted from VPN i.e. inbound traffic.

In your case static routes for remote tunnel endpoints + RRI will do the trick.

M.

edit: I would advise yo to forget about termination of dynamic peers (dynamic IP L2L or ezvpn) solutions on any interface which doesn't have a default route on it.

1 REPLY
Cisco Employee

Re: ASA 5510 Internet Connection Dedicated VPN

Rob,

(Simplification) "Tunneled" option is indicating what to do with traffic once it has been decapsulted from VPN i.e. inbound traffic.

In your case static routes for remote tunnel endpoints + RRI will do the trick.

M.

edit: I would advise yo to forget about termination of dynamic peers (dynamic IP L2L or ezvpn) solutions on any interface which doesn't have a default route on it.

231
Views
0
Helpful
1
Replies
CreatePlease to create content