troubleshooting Question

Allowing traffic from one branch to another via VPN?

Avatar of providenceeng
providenceengFlag for United States of America asked on
VPNHardware FirewallsCisco
9 Comments1 Solution792 ViewsLast Modified:
Here's what I have:
Main Office: Cisco ASA 5510,   (Remote access VPN terminates here)
Site to Site (IPSEC) VPN from the main branch to each branch office:
Branch 1: Cisco ASA 5505,
Branch 2: Cisco ASA 5505,
Branch 3: Cisco ASA 5505,
Branch 4: Cisco Pix 501,

From the main office, I can connect to any host on any branch subnet, and from any branch, I can access any host on the main office subnet.
What I can't do is use the Remote Access VPN to the main branch and talk to any host on any branch, and I can't connect from a branch office to a host on another branch office.

Is there a name for this limitation, and does anyone have a work-around to enable this functionality, hardware upgrade, or configuration change on the Cisco equipment to enable this?

We need this type of functionality so that home users can VPN to the main branch, and then remote desktop as needed to their branch office computer.

I suspect it might be some security rule or routing table. If I need to post part of any branch or main office Cisco configuration I will.

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 9 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 9 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros