Link to home
Start Free TrialLog in
Avatar of presscwo
presscwoFlag for United States of America

asked on

How to route through firewall to access IPsec Tunnel

Please see attached Diagram for reference.

I have established a VPN tunnel from our main site to our data hosting company.  I want to be able to allow for traffic from the remote site (64.197.xxx.xxx) and destined for the data center (208.89.xxx.xxx) to go through the VPN tunnel on the Main Site.  It is a pretty simple setup.  

Should I route from the ASA and forward all data center traffis to go through the main site?  What do I do with the data when it arrives at the main site to route it through the tunnel?

Thanks!!
Network-INT-REV.jpg
Avatar of Qlemo
Qlemo
Flag of Germany image

You should not need more than to set the
* Remote Site ASA to route traffic for Data Center thru the Main Site ASA
* Main Site ASA to know how to route traffic to Remote Site (10.0.75.0/24)
* Data Center server(s) to route traffic for 10.0.75.0/24 via the VPN tunnel.
So it is all about proper routing.
Avatar of presscwo

ASKER

I was told by someone knowledgeable that I would need to contact my ISP to advertise the route to the specific host to get it across the MPLS network.  Any thoughts?
Sounds reasonable. Though, I don't have any experience with MPLS.
ASKER CERTIFIED SOLUTION
Avatar of eeRoot
eeRoot

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial