Hi I have recently set up an Cisco ASA 5510 to replace a netgear with a few teething problems as all traffic flows in- bar one -via the outside interface IP. Batry_boy and a friend kindly assisted with the static NATs/ PATs and acls and this works fine now. Config attached.
There are just a couple of things I can't get working. We use a sonicwall for VPN connection, and users come in via https to the sonicwall box on the inside- this works fine ( the NAT and acl work for this) but the thing that doesn't work is once connected the sonicwall dishes out an IP from the 192.168.200.0 /24 subnet and users are unable to browse resources on the local subnet 192.168.2.0 /24 via the sonicwall 192.168.2.9. On the previous netgear this worked fine, with a simple static route:
destination 192.168.200.0 gateway 192.168.2.9
I add a route:
route INSIDE 192.168.200.0 255.255.255.0 192.168.2.9 1
but this hasn't helped; I am unable to ping or browse to servers on the local network when connected to office via VPN. I know I'm missing something. Any ideas?
Also I set up a site to site VPN from this ASA to ia Netgear in Irvine in US.
I configured it from outside interface to peer IP (public IP)- with 3DES/MD5 and preshared key. All setting same either side.
Set up the local users as below (Site2site) on asdm, selecting local users from 192.168.2.0 /24 and remote users in Irvine on 192.168.12.0 /24- I hope set this up ok?
Managed to see that the connection from the Irvine end is seen as established but can't ping their local network 192.168.12.0 whatsoever- the US netgear router is on 192.168.12.1. On the old Netgear in UK this worked seamlessly, and we could ping and connect to their router on 192.168.12.1.
Should I be able to ping this on Cisco? Can someone review the config and see if I have missed anything obvious? What is a good test?
Thanks in advance for everything. Kind regards