Route traffic on vpn to another interface on an ASA 5510

vpn routing cisco-asa cisco-vpn

Solution 1:

The best way to do this is to expand your encryption domain to include 192.168.3.0/24 (or just 192.168.3.X/32 for all necessary X).

For example, on your ASA 5510, you probably have an access-list like this:

access-list to-remote extended line 1 permit ip 192.168.2.0 255.255.255.0 192.168.200.0 255.255.255.0

Assuming your application lives on 192.168.3.5 and you want to give all of 192.168.200.0/24 access, for example, you'll want to add something like the following:

access-list to-remote extended line 2 permit ip host 192.168.3.5 192.168.200.0 255.255.255.0

Remember that you have to modify the encryption domain on the other side as well.

Related

How to attach a 2-device striped mirror to a pool?
How to estimate required hosting parameter before release of a web application?
Weird Apache Access log
PAT users can't access website, but NAT users can?
How can I install git on a remote OS X Server - without Developer Tools?
How to "align" a Linux file system with a SSD?
How to install JRE on FreeBSD 8?
All my domain's outgoing mail received as spam in gmail/yahoo/hotmail
Datacenter power failure failover
Offer Custom URLs using CNAME
Lighttpd redirect from www.domain.com to domain.com
Is it possible to determine how may servers is connected to an anycast address?