Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
342
Views
0
Helpful
3
Replies

VPN Split-tunnel Config help

cisconoobie
Level 2
Level 2

‎09-25-2006 10:07 AM

Right now my VPN is setup and working properly. Basically, when a user connects to the ASA5520 VPN Server, an IP gets issued to them and they can connect. When the user tries to browse the internet it uses the user's ISP which is good.

Now I need to set it up so SSH originates from the company and not from the user's personal ISP, meaning if they SSH to another site through the VPN tunnel.

How can I do this ?

Labels:
0 Helpful
3 Replies 3

b.hsu
Level 5
Level 5

‎09-29-2006 11:43 AM

What's the software verison which you are using in the ASA box?

0 Helpful

cisconoobie
Level 2
Level 2
In response to b.hsu

‎09-30-2006 07:26 AM

7.2.1

asdm 5.2

0 Helpful

mcat84
Level 1
Level 1

‎10-01-2006 06:48 PM

I have tried something before....tunnel everything...but in your case, maybe you can try something like this.

if your vpnpool is 192.168.88.1-192.168.88.254

Do a extended access-list for 192.168.88.0/24 to SSH

Then do

nat (outside) 6 access-list abc

global (outside) 6

Not very sure it will conflict with the NONAT statement or not....please let us know

0 Helpful
Customers Also Viewed These Support Documents