Cisco asa 5510 VPN Ips

Hello, I have a cisco VPN and I'm trying to figure out the VPN settings.
I have the inside interface 192.168.20.0/16

When I set the VPN, Do I have to give the VPN users IPs from the same range or can I just give them any IP and the firewall will create the routes.
When we were using the CYberguard VPN the clients used to get ips from an very rare range 20.20.20.0/24 ..........This way they will never have problems when they connect to the vpn server and the local lan that they are connecting from  is on the same range as our network.

quippeeAsked:
Who is Participating?
 
stressedout2004Commented:
Cisco recommends that the VPN users IP subnet be on a different subnet than that of the internal network to avoid any routing issues.The ASA will automatically take care of routing for the VPN IP subnet. If the internal network's default gateway is pointed to the ASA inside interface, then you have nothing to worry about. Most of the time when the VPN user's subnet is on the same subnet as that of the internal network, the VPN users are not able to pass any traffic.
0
 
quippeeAuthor Commented:
Yup. I tried it again and it works.....I have different IPs for the VPN users and they are able to connect to the network......I havent enable split tunneling so they should have access to the internet through the VPN but is not working......DNS resolutino is working OK.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.