Solved

ASA SSL VPN

Posted on 2014-11-15
3
216 Views
Last Modified: 2014-11-16
I am trying to understand the traffic flow for the SSL VPN  configured on the ASA 5510. Basically, my Internet connection terminates at a Juniper FW. The Juniper FW is connected to the core switch. The ASA is connected to the core but not connected to the Internet or the Juniper FW. I am at a remote location and am accessing my internal network with anyConnect. How does the traffic flow work? Thanks
0
Comment
Question by:leblanc
3 Comments
 
LVL 22

Assisted Solution

by:Matt V
Matt V earned 400 total points
ID: 40445632
Without knowing anything else, I would assume that the Juniper has forwarding and NAT rules to the ASA.

SSL VPN Connection hits the Juniper, gets forwarded to the ASA for processing.

Not much different than hosting a website internally.
0
 
LVL 69

Accepted Solution

by:
Qlemo earned 100 total points
ID: 40445638
Agree. I cannot imagine any other way of getting this work. But it seems a bit overcomplicated to use two firewalls here, though probably nothing uncommon.
0
 
LVL 1

Author Comment

by:leblanc
ID: 40445761
I found out there is a rule in the Juniper that is doing the NAT for traffic coming in for the ASA. Thanks
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

We recently endured a series of broadcast storms that caused our ISP to shut us down for brief periods of time. After going through a multitude of tests, we determined that the issue was related to Intel NIC drivers on some new HP desktop computers …
In the modern office, employees tend to move around the workplace a lot more freely. Conferences, collaborative groups, flexible seating and working from home require a new level of mobility. Technology has not only changed the behavior and the expe…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question