Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

ASA 5505 Security appliance VPN setup

Posted on 2007-11-19
4
398 Views
Last Modified: 2012-05-05
I am trying to open the ports to allow VPN Access using the 2003 server in the ASA 5505 Security appliance setup. I would also like to open the ports to allow VNC access once connected to the VPN if necessary. I am a novice at configuring these devices but the Vpn was working and configured properly before installing this device with a netgear router. Our software company needed us to install this and i am having much trouble configuring it. Thanks.
0
Comment
Question by:Tblack716
  • 2
4 Comments
 
LVL 28

Expert Comment

by:batry_boy
ID: 20317469
Please clarify your network topology a little bit...is the ASA on the outside or inside of the netgear router?  You mention wanting to "allow VPN access using the 2003 server in the ASA 5505 security appliance setup."  In what way do you want to use the 2003 server?  For authentication, or do you want a VPN user to be able to access the 2003 server for other things?  Can you clarify?
0
 

Author Comment

by:Tblack716
ID: 20317832
the netgear router was replaced by this device. The vpn was seup and working fine prior to rreplacing the router. The vpn user would need access to the sql server running on the 2003server in order to run a medical management software, as well as access to a network drive and authentication against the domain. I hope that helps not sure if that is all the info you need or not. P.S The software we are using is called E-MDS not sure if it matters or not. http://www.e-mds.com/
0
 
LVL 28

Accepted Solution

by:
batry_boy earned 500 total points
ID: 20320041
First, I would go through the VPN Wizard to set up remote access VPN connectivity to the ASA.  It will step you through a series of screens and it will ask for specific information.  Just answer the questions.

You asked about allowing specific ports to the VPN users once you have that configured.  Well, by default, the ASA allows ALL ports to VPN users since it is an encrypted connection.  In other words, the ASA implicitly trusts VPN connections.  Therefore, you don't have to specifically open up certain ports for VPN users to do what you're wanting to do.

There will be one question in the VPN Wizard where it will ask you about authentication and whether to use the local database or not for user authentication.  It sounds like you will want to use extended authentication since you want to authenticate your users against AD.  See the following URL for info on authenticating VPN users against AD using IAS RADIUS:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00806de37e.shtml

That will get you started...
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question