Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET

How to allow traffic between remote VPN subnet and site-to-site VPN subnet?

Home Forums Networking Cisco Security – PIX/ASA/VPN How to allow traffic between remote VPN subnet and site-to-site VPN subnet?

Viewing 1 post (of 1 total)
  • Author
    Posts

  • gustaav
    Member
    #165801

    [SIZE=14px]Hello. We have this VPN scenario with our Cisco ASA firewalls:[/SIZE]

    • Our main’s office LAN subnet: 172.16.0.0/25
    • Our branch’s office LAN subnet: 172.16.1.0/25
    • Our branch’s office IP pool for remote VPN: 172.16.1.128/25

    [SIZE=14px]There’s a site-to-site VPN configured between the Cisco ASA firewall of the main office and the Cisco ASA firewall of the branch office. The branch office has several VPN remote users. So:[/SIZE]

    • Traffic between subnets 172.16.0.0/25 and 172.16.1.0/25 works fine.
    • Traffic between subnets 172.16.1.0/25 and 172.16.1.128/25 works fine through Cisco VPN client.

    [SIZE=14px]The question is: What ACL/NAT configuration do I need in the branch’s firewall in order to allow traffic between 172.16.1.128/25 subnet and 172.16.0.0/25 subnet?[/SIZE]
    [SIZE=14px]Thanks in advance![/SIZE]

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.

Live Webinar: Active Directory Security: What Needs Immediate Priority!Live on Tuesday, October 12th at 1 PM ET

Attacks on Active Directory are at an all-time high. Companies that are not taking heed are being punished, both monetarily and with loss of production.

In this webinar, you will learn:

  • How to prioritize vulnerability management
  • What attackers are leveraging to breach organizations
  • Where Active Directory security needs immediate attention
  • Overall strategy to secure your environment and keep it secured

Sponsored by: