![]() The hub ASA Security Appliance needs to run Release 9.x. ciscoasa(config)# same-security-traffic permit intra-interface Prerequisites RequirementsĬisco recommends that you meet these requirements before you attempt this configuration: For example, if you have a hub-and-spoke VPN network where the security appliance is the hub and the remote VPN networks are spokes, in order for one spoke to communicate with another spoke traffic must go to the security appliance and then out again to the other spoke.Įnter the same-security-traffic command in order to allow traffic to enter and exit the same interface. This feature is useful for VPN traffic that enters an interface, but is then routed out of that same interface. This IP address scheme is helpful in order to troubleshoot your network. Note: In order to avoid an overlap of IP addresses in the network, assign a completely different pool of IP addresses to the VPN Client (for example, 10.x.x.x, 172.16.x.x, and .x). ![]() It covers this configuration scenario: U-turn traffic from remote access clients. This document describes how to set up a Cisco Adaptive Security Appliance (ASA) Release 9.X to allow it to u-turn VPN traffic. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |