Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA 5520 IPSEC vpn overlap

Hi There,

We have multiple vpn tunnels coming to our cisco asa 5520 , the problem is that when we create another tunnel with the same network as another network on the firewall , it does not know how to route the traffic to which interface or sub interface.

How can we over come this , can you please help.

Thanks

R

2 REPLIES

Re: ASA 5520 IPSEC vpn overlap

Search the forums for nat over IPSec, this question has been asked and answered many times

Sent from Cisco Technical Support iPad App

Bronze

Re: ASA 5520 IPSEC vpn overlap

Policy NAT on both ends of the tunnel or use public IP addresses on both ends. 

If your remote VPN subnet is the same as a local network on the firewall, the traffic will never get forwarded since a directly connected network route takes precedence over the default route. 

577
Views
0
Helpful
2
Replies
CreatePlease login to create content