[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 309
  • Last Modified:

Cisco asa 5510 VPN Ips

Hello, I have a cisco VPN and I'm trying to figure out the VPN settings.
I have the inside interface 192.168.20.0/16

When I set the VPN, Do I have to give the VPN users IPs from the same range or can I just give them any IP and the firewall will create the routes.
When we were using the CYberguard VPN the clients used to get ips from an very rare range 20.20.20.0/24 ..........This way they will never have problems when they connect to the vpn server and the local lan that they are connecting from  is on the same range as our network.

0
quippee
Asked:
quippee
1 Solution
 
stressedout2004Commented:
Cisco recommends that the VPN users IP subnet be on a different subnet than that of the internal network to avoid any routing issues.The ASA will automatically take care of routing for the VPN IP subnet. If the internal network's default gateway is pointed to the ASA inside interface, then you have nothing to worry about. Most of the time when the VPN user's subnet is on the same subnet as that of the internal network, the VPN users are not able to pass any traffic.
0
 
quippeeAuthor Commented:
Yup. I tried it again and it works.....I have different IPs for the VPN users and they are able to connect to the network......I havent enable split tunneling so they should have access to the internet through the VPN but is not working......DNS resolutino is working OK.
0

Featured Post

Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now