Cisco – Pass traffic from remote access to site to site tunnel


I have situation where remote access ipsec client have to connect to ASA firewall to send and receive traffic using site to site tunnel on the same ASA, in the logs I am seeing packets dropped as it is sourced and destinated to the same interface.
Did any one ever tried such setup? Did it work? I see it is logical and possible

Best Answer

If you want to permit flows of traffic, that coming in on an interface and to be routed back out the same interface

same-security permit intra-interface

it's called hairpinning: