How to enable internet access for VPN Clients on Cisco ASA 5505

I am looking for guidance on how to allow VPN connected users to access the internet while connected.  They willd need to access our office internet connection, not their home connection, as some sites require users come from our office IP address in order to access.  Happy to provide any additional information needed.
gtkdwDirector, ITAsked:
Who is Participating?
John MeggersNetwork ArchitectCommented:
Take a look at  It tells you how to "hairpin" the traffic and NAT VPN traffic coming from the VPN pool going out to the Internet.
You'll have to force all data from the client through the VPN tunnel. This should be a configurable option in the VPN settings for that group. Sometimes this is called a zero based route, as the destination provided to the client for the tunnel is
You need both of the above configured.  Hairpinning & on cryptomap ACL
gtkdwDirector, ITAuthor Commented:
Thanks for the prompt and helpful response.  Been struggling with this for 2 days on my own.  Should have asked for help sooner.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.