site-to-site VPN issue

[prince78]

Hi

I have configured a site-to-site IPSEC VPN and seems like I have some basic issues. Can you please advise?

can ping from LAN to ASA inside interface
cannot ping from LAN to ASA outside interface
can ping from ASA to internet (eg:cisco.com)
can ping from router to internet (router is connected to ASA towards the internet)

I initially tried browsing and pinging internet from LAN and cant get through.

thank you

Can someone advice me what are the basic tests I need to do before checking the vpn connectivity.

Also is there any document for ASA commands?

 

[horus42]

This is not very clear to me but I think you are trying to access the internet from the remote site via the Tunnel, if that is the case you need to enable hairpinning

same-security-traffic permit intra-interface

 

[prince78]

hi

thanks for the reply. I am trying to access internet from the local site and seems that it doesnt pass through the firewall. though I dont have acls from inside to outside, there is something stopping me to access the internet from local network.

By the way, I have already used the command you have mentioned above.

can you please advise, what are the basic tests I can make to make sure my rules are right on local firewall before actually testing the VPN to the remote site

thanks

 

[prince78]

I have my config pasted on the link below. Can you please check this and advise. This is really urgent to me.

http://www.tek-tips.com/viewthread.cfm?qid=1312952&page=2

Appreciate any advise.
thanks