Parag,
This is possible. Just remember to change the Proxy ACL on ASAs to reflect
the networks behind A and C. I see you have already turned on U-Turn
feature, so that's fine. Please refer to the following document :
Regards,
-- Piotr Kaluzny CCIE #25665 (Security), CCSP, CCNP Sr. Support Engineer - IPexpert, Inc. URL: http://www.IPexpert.com On Thu, Mar 18, 2010 at 12:07 PM, Parag Hadas <Parag.Hadas_at_amdocs.com>wrote: > Hi All, > > I have 3 remote sites: A, B, and C all running Cisco ASA devices with > version > 8.0. > I have successfully configured a VPN tunnel between site A and B. I've also > configured a tunnel between site B and C. > I would like for site A to be able to get to site C THROUGH site B. I > cannot > create a direct tunnel between A and C due to circumstances. > > Is this possible? If so, where should I configure my routing statements? > > When pinged from A to C, I can see packets getting decryp at B but they > don't > go to tunnel to C. I have enabled same-interface-traffic intra-interface > also. > > Thanks and Regards, > Parag Hadas > > > This message and the information contained herein is proprietary and > confidential and subject to the Amdocs policy statement, > you may review at http://www.amdocs.com/email_disclaimer.asp > > > Blogs and organic groups at http://www.ccie.net > > _______________________________________________________________________ > Subscription information may be found at: > http://www.groupstudy.com/list/CCIELab.html > > > > > > > > -- Piotr Kaluzny CCIE #25665 (Security), CCSP, CCNP Sr. Support Engineer - IPexpert, Inc. URL: http://www.IPexpert.com Blogs and organic groups at http://www.ccie.netReceived on Thu Mar 18 2010 - 12:23:03 ART
This archive was generated by hypermail 2.2.0 : Thu Apr 01 2010 - 07:26:35 ART