Dear All,
I will highly appreciate any help in this regard, one of our branches
connected through E1 circuit with IPSec tunnel is unable to use Internet
from HQ, Below is the topology,
HQ - ASA 5510-------------E1------------------ Router - Branch ---- LAN
ASA has interfaces,
E0/0 = E1 connecting branch..
E0/1 = HQ LAN
E0/2 = Internet
Below is the NAT and the ACL for interesting traffic config on ASA
global (outside) 1 interface
nat (inside) 1 0.0.0.0 0.0.0.0
nat (inside) 0 access-list 101
access-list 101 per ip 10.1.1.0 255.255.255.0 172.16.1.0 255.255.255.0
Everything is working fine except that users in the branch unable to
access the Internet through HQ i don't think if the NAT configuration on
ASA is correct in order for the branch users to be able to access the
internet, and also I'm not doing any NAT on branch router. Anyone with
any help please...
Kind Regards,
_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit
www.ipexpert.com
