odewulf
asked on
force all internet traffice to go through the ASA VPN tunnel
I have configured 2 cisco asa 5505 and they are connecting network 1 and network 2 to each other via a VPN tunnel.
Network 1 has limited internet access via its gateway and I would like to find a way to redirect all the internet traffic on network1 to use the vpn tunnel as the main gateway and not the asa1 gateway.
is that feasible?
thanks
Gaetan
Network 1 has limited internet access via its gateway and I would like to find a way to redirect all the internet traffic on network1 to use the vpn tunnel as the main gateway and not the asa1 gateway.
is that feasible?
thanks
Gaetan
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
thanks I am going to try that. I have some issues to resolve first with the port forwarding and then I will give it a try
ASA1:
access-list crypto extended permit ip 10.0.1.0 255.255.255.0 any <--10.0.1.0 is network1
ASA2:
access-list crypto extended permit ip any 10.0.1.0 255.255.255.0
Make sure the NAT on ASA1 encompasses network1 (10.0.1.0 in this example).