Solved

Cisco asa 5510 VPN Ips

Posted on 2006-07-14
2
296 Views
Last Modified: 2013-11-16
Hello, I have a cisco VPN and I'm trying to figure out the VPN settings.
I have the inside interface 192.168.20.0/16

When I set the VPN, Do I have to give the VPN users IPs from the same range or can I just give them any IP and the firewall will create the routes.
When we were using the CYberguard VPN the clients used to get ips from an very rare range 20.20.20.0/24 ..........This way they will never have problems when they connect to the vpn server and the local lan that they are connecting from  is on the same range as our network.

0
Comment
Question by:quippee
2 Comments
 
LVL 9

Accepted Solution

by:
stressedout2004 earned 500 total points
ID: 17107902
Cisco recommends that the VPN users IP subnet be on a different subnet than that of the internal network to avoid any routing issues.The ASA will automatically take care of routing for the VPN IP subnet. If the internal network's default gateway is pointed to the ASA inside interface, then you have nothing to worry about. Most of the time when the VPN user's subnet is on the same subnet as that of the internal network, the VPN users are not able to pass any traffic.
0
 

Author Comment

by:quippee
ID: 17108351
Yup. I tried it again and it works.....I have different IPs for the VPN users and they are able to connect to the network......I havent enable split tunneling so they should have access to the internet through the VPN but is not working......DNS resolutino is working OK.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Exchange OWA - failed logins and brute force monitor 7 256
Telnet IP/port - Testing for connectivity question 11 113
iptables ubuntu BLOCK all 2 83
Sql Server Firewall Problems 2 66
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now