Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

clientless access to resources across vpn

I have been trying to figure something out.  Lets say you have one ASA that is terminating both clientless SSL vpn, and site to site/remote access ipsec vpns.  Is it possible to allow clientless webvpn users access to resources at the end of the ipsec tunnels?  I have not had success before. In this case, the same interface on the ASA is terminating the webvpn and the L2L tunnels.

Here is some clarrification if it helps

webvpn-----------ASA ---L2Ltunnel----PIX----File Servers





               Internal File Servers

Cisco Employee

Re: clientless access to resources across vpn

Yes. Clientless vpn traffic will be taking outside ip as source when going out of the l2l tunnel (assuming l2l tunnel is on outside) so you need to allow the intresting traffic keeping this in mind. You probaly need to configure outside nat exempt and also hair pinning

CreatePlease login to create content