<div>
Hi<br />
<br />
Honestly i have never build such a setup but let me think with you.<br />
Now beween branch office 1 and 2 are 2 ACcess-List active right? Both same but vice versa.<br />
<br />
My guess is you need an ACL to each tunnel in the office 1 config.<br />
Like: access-list permit branch2 datacenter1<br />
Access-list permit branch2 datacenter2
</div>


Hi

Honestly i have never build such a setup but let me think with you.
Now beween branch office 1 and 2 are 2 ACcess-List active right? Both same but vice versa.

My guess is you need an ACL to each tunnel in the office 1 config.
Like: access-list permit branch2 datacenter1
Access-list permit branch2 datacenter2

<div>
ffleisma, is correct, If office 2 was of any size I would put in a VPN from it to each DC, but this does not scale very well if you are going to expand!
</div>


ffleisma, is correct, If office 2 was of any size I would put in a VPN from it to each DC, but this does not scale very well if you are going to expand!

<div>
<div class="content wysiwyg-content">
If you look at network diagram, the corporate Office 1 ASA has a site to site VPN to all other locations. &nbsp;We just opened up Corporate Office 2 and installed an ASA5510 as seen at the bottom. &nbsp;I created a VPN between Corporate Office 1 and Corporate Office 2. &nbsp;Now from Corporate Office 2, I want to be able to reach all the datacenters up top. &nbsp;I don’t’ want to create a separate VPN on the Corporate Office 2 ASA5510 to all the Datacenters. &nbsp;The question is since I have a VPN between the two corporate Offices, how do I access all the datacenters from Corporate Office 2 going through Corporate Office 1?<br />
<br />
<a href="https://filedb.experts-exchange.com/incoming/2015/05_w21/915002/Network-Diagram.jpg" target="_blank" title="Network-Diagram.jpg (60 KB)"><img alt="Network-Diagram.jpg" class="file-block lazyload" style="max-width: 800px;" data-src="https://filedb.experts-exchange.com/incoming/2015/05_w21/800_915002/Network-Diagram.jpg" /></a>
</div>
</div>


Network-Diagram.jpg

If you look at network diagram, the corporate Office 1 ASA has a site to site VPN to all other locations.  We just opened up Corporate Office 2 and installed an ASA5510 as seen at the bottom.  I created a VPN between Corporate Office 1 and Corporate Office 2.  Now from Corporate Office 2, I want to be able to reach all the datacenters up top.  I don’t’ want to create a separate VPN on the Corporate Office 2 ASA5510 to all the Datacenters.  The question is since I have a VPN between the two corporate Offices, how do I access all the datacenters from Corporate Office 2 going through Corporate Office 1?



ASA site to site VPN assistance

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Cisco

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.