Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
293
Views
0
Helpful
1
Replies

IPsec site2site routing problem

tung
Level 1
Level 1

‎11-16-2008 10:18 PM - edited ‎03-04-2019 12:21 AM

Hello,

How does the ASA firewall ACL permiting traffic for two cisco 1811 site to site IPSEC? Site A and B connected through IPSec. Site A has a ASA firewall and this firewall only use to connect to an outsource application. If I need to permit acl_nonat , do I permitting public or private address of site B? Our problem is we use MPLS then everything works fine but after we switched to IPSec site to site then it broke. I am able to access everything on IPSEC site to site but except this outsource application.

Labels:
0 Helpful
1 Reply 1

connect2world
Level 1
Level 1

‎11-16-2008 11:25 PM

If I understand correctly, you are trying to get to site A from Site B and vice versa? If your spoke are all ASA, you might want to look at how it is possible from http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00804675ac.shtml

especially on the section of Hairpinning or U-turn which you need to execute a special command at the hub.

I have similar problem, to get pass this problem, a GRE tunnel was constructed bt site A & B. So intersite traffic between A & B go via this tunnel instead of via the hub. Of course this is just one of the way to do this.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card