Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Use ASA SSL VPN in one-armed mode

Posted on 2008-10-16
2
Medium Priority
?
1,576 Views
Last Modified: 2012-05-05
I have a LAN that is behind a Juniper SSG550M firewall. I also have an ASA-5505 that I want to use strictly as a Client-based SSL VPN server. It has only one interface configured (inside)  as I need it to work in one-armed mode. I have a one-to-one NAT configured on the Juniper for the ASA's IP address and everything allowed to it. All of the routing is configured correctly. For some reason I cannot ping anythign inside the LAN from the outside. I know it isn't a problem with the SSL VPN copnfiguration because I can actually establish a connection to the ASA from the outside via SSL and if I configure this in the traditional manner with an inside and outside interface and NAT it works. Was the ASA designed to work in this fasion? Is there something special I need to do?
0
Comment
Question by:sschuessler
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 57

Accepted Solution

by:
Pete Long earned 500 total points
ID: 22738431
Have you allowed traffic from your internal network to the remote IP pool in use on your SSL VPN?
Is there a static NAT translation for the above?
If so and you can reach the portal and Anyconnect will connect that should be all you need to do :)
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
On Feb. 28, Amazon’s Simple Storage Service (S3) went down after an employee issued the wrong command during a debugging exercise. Among those affected were big names like Netflix, Spotify and Expedia.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question