<div>
So, essentially, you want to tunnel all traffic to network2? &nbsp;If so, change your crypto access-lists to the following:<br />
<br />
ASA1:<br />
<br />
access-list crypto extended permit ip 10.0.1.0 255.255.255.0 any &nbsp;&lt;--10.0.1.0 is network1<br />
<br />
ASA2:<br />
<br />
access-list crypto extended permit ip any 10.0.1.0 255.255.255.0<br />
<br />
Make sure the NAT on ASA1 encompasses network1 (10.0.1.0 in this example).
</div>


So, essentially, you want to tunnel all traffic to network2?  If so, change your crypto access-lists to the following:

ASA1:

access-list crypto extended permit ip 10.0.1.0 255.255.255.0 any  <--10.0.1.0 is network1

ASA2:

access-list crypto extended permit ip any 10.0.1.0 255.255.255.0

Make sure the NAT on ASA1 encompasses network1 (10.0.1.0 in this example).

<div>
thanks I am going to try that. I have some issues to resolve first with the port forwarding and then I will give it a try
</div>


thanks I am going to try that. I have some issues to resolve first with the port forwarding and then I will give it a try

<div>
<div class="content wysiwyg-content">
I have configured 2 cisco asa 5505 and they are connecting network 1 and network 2 &nbsp;to each other via a VPN tunnel.<br />
<br />
Network 1 has limited internet access via its gateway and I would like to find a way to redirect all the internet traffic on network1 to use the vpn tunnel as the main gateway and not the asa1 gateway.<br />
<br />
is that feasible?<br />
<br />
thanks<br />
<br />
Gaetan
</div>
</div>


I have configured 2 cisco asa 5505 and they are connecting network 1 and network 2  to each other via a VPN tunnel.

Network 1 has limited internet access via its gateway and I would like to find a way to redirect all the internet traffic on network1 to use the vpn tunnel as the main gateway and not the asa1 gateway.

is that feasible?

thanks

Gaetan

force all internet traffice to go through the ASA VPN tunnel

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.

Hardware Firewalls

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).