Solved

ASA 5505 Security appliance VPN setup

Posted on 2007-11-19
4
390 Views
Last Modified: 2012-05-05
I am trying to open the ports to allow VPN Access using the 2003 server in the ASA 5505 Security appliance setup. I would also like to open the ports to allow VNC access once connected to the VPN if necessary. I am a novice at configuring these devices but the Vpn was working and configured properly before installing this device with a netgear router. Our software company needed us to install this and i am having much trouble configuring it. Thanks.
0
Comment
Question by:Tblack716
  • 2
4 Comments
 
LVL 28

Expert Comment

by:batry_boy
Comment Utility
Please clarify your network topology a little bit...is the ASA on the outside or inside of the netgear router?  You mention wanting to "allow VPN access using the 2003 server in the ASA 5505 security appliance setup."  In what way do you want to use the 2003 server?  For authentication, or do you want a VPN user to be able to access the 2003 server for other things?  Can you clarify?
0
 

Author Comment

by:Tblack716
Comment Utility
the netgear router was replaced by this device. The vpn was seup and working fine prior to rreplacing the router. The vpn user would need access to the sql server running on the 2003server in order to run a medical management software, as well as access to a network drive and authentication against the domain. I hope that helps not sure if that is all the info you need or not. P.S The software we are using is called E-MDS not sure if it matters or not. http://www.e-mds.com/
0
 
LVL 28

Accepted Solution

by:
batry_boy earned 500 total points
Comment Utility
First, I would go through the VPN Wizard to set up remote access VPN connectivity to the ASA.  It will step you through a series of screens and it will ask for specific information.  Just answer the questions.

You asked about allowing specific ports to the VPN users once you have that configured.  Well, by default, the ASA allows ALL ports to VPN users since it is an encrypted connection.  In other words, the ASA implicitly trusts VPN connections.  Therefore, you don't have to specifically open up certain ports for VPN users to do what you're wanting to do.

There will be one question in the VPN Wizard where it will ask you about authentication and whether to use the local database or not for user authentication.  It sounds like you will want to use extended authentication since you want to authenticate your users against AD.  See the following URL for info on authenticating VPN users against AD using IAS RADIUS:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00806de37e.shtml

That will get you started...
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now