Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 

ReRouting IPSec traffic on the hub ASA

HI,

I have a hub location "A" and two braches "B" and "C", both connected to "A" using IPSec tunnels on ASA 5505 v8.0.

The question is: Can I reroute traffic coming from "B" to "C"?

"B"  --IPSec-->  "A"  --IPSec-->  "C"

Thanks.

Guido

Everyone's tags (3)
1 REPLY

Re: ReRouting IPSec traffic on the hub ASA

Hi Guido,

Yes, the ASA allows hairpinning the traffic back out the same interface in which it receives it.

Assuming that both tunnels end on the outside interface, then normally you need:

same-security-traffic permit intra-interface

Also, the correct routing and NAT rules for the traffic.

Let us know if you need further help.

Federico.

449
Views
0
Helpful
1
Replies
CreatePlease to create content