Solved

Use ASA SSL VPN in one-armed mode

Posted on 2008-10-16
2
1,539 Views
Last Modified: 2012-05-05
I have a LAN that is behind a Juniper SSG550M firewall. I also have an ASA-5505 that I want to use strictly as a Client-based SSL VPN server. It has only one interface configured (inside)  as I need it to work in one-armed mode. I have a one-to-one NAT configured on the Juniper for the ASA's IP address and everything allowed to it. All of the routing is configured correctly. For some reason I cannot ping anythign inside the LAN from the outside. I know it isn't a problem with the SSL VPN copnfiguration because I can actually establish a connection to the ASA from the outside via SSL and if I configure this in the traditional manner with an inside and outside interface and NAT it works. Was the ASA designed to work in this fasion? Is there something special I need to do?
0
Comment
Question by:sschuessler
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 57

Accepted Solution

by:
Pete Long earned 125 total points
ID: 22738431
Have you allowed traffic from your internal network to the remote IP pool in use on your SSL VPN?
Is there a static NAT translation for the above?
If so and you can reach the portal and Anyconnect will connect that should be all you need to do :)
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
Many of the companies I’ve worked with have embraced cloud solutions due to their desire to “get out of the datacenter business.” The ability to achieve better security and availability, and the speed with which they are able to deploy, is far grea…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question