Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: Allow traffic between L2L and remote VPN subnets

Allow traffic between L2L and remote VPN subnets 1 year 2 months ago #38681

  • gustaav
  • gustaav's Avatar
  • Offline
  • New Member
  • Posts: 2
  • Karma: 0
Hello. We have this VPN scenario with our Cisco ASA firewalls:
  • Our main's office LAN subnet: 172.16.0.0/25
  • Our branch's office LAN subnet: 172.16.1.0/25
  • Our branch's office IP pool for remote VPN: 172.16.1.128/25
There's a site-to-site VPN configured between the Cisco ASA firewall of the main office and the Cisco ASA firewall of the branch office. The branch office has several VPN remote users. So:
  • Traffic between subnets 172.16.0.0/25 and 172.16.1.0/25 works fine.
  • Traffic between subnets 172.16.1.0/25 and 172.16.1.128/25 works fine through Cisco VPN client.
The question is: What ACL/NAT configuration do I need in the branch's firewall in order to allow traffic between 172.16.1.128/25 subnet and 172.16.0.0/25 subnet?
Thanks in advance!
Last Edit: 1 year 2 months ago by gustaav.
The administrator has disabled public write access.

Allow traffic between L2L and remote VPN subnets 1 year 2 months ago #38682

  • gustaav
  • gustaav's Avatar
  • Offline
  • New Member
  • Posts: 2
  • Karma: 0
I made some changes, but still no luck! Now, this second VPN scenario is this:
  • Our main's office LAN subnet: 172.16.0.0/25
  • Our branch's office LAN subnet: 172.16.0.1/25
  • Our branch's office IP pool for remote VPN: 172.16.1.101/25 - 172.16.1.109

In this scenario, the IP pool for remote VPN are in the same subnet of branch's office LAN, but still, there's no traffic between remote VPN and main's office subnet. Any clue why this scenario or the previous doesn't work for me?
The administrator has disabled public write access.
Time to create page: 0.071 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup