Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
406
Views
1
Helpful
1
Replies

Route all branch traffic thru IPSEC tunnel to HQ

tonglek01
Level 1
Level 1

‎10-02-2014 09:00 PM - edited ‎02-21-2020 07:51 PM

We have site to site VPN using Cisco ASA. If I would like to route all the traffic through tunnel mean included internet in site B (branch) need to go out from site A (HQ)?

The cisco ASA able to support this kind of request? if yes any sample configuration for this?

 

 

Labels:
0 Helpful
1 Reply 1

Marius Gunnerud
VIP
VIP

‎10-03-2014 03:58 AM

This is a very common setup.  All you need to do is when configuring the crypto access-lists specify the destination as any at the branch office and at the HQ specify the source as any.  for example:

HQ

access-list S2S_VPN permit ip any 192.168.1.0 255.255.255.0

Branch

access-list S2S_VPN permit ip 192.168.1.0 255.255.255.0 any

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts
Customers Also Viewed These Support Documents