Solved

Use ASA SSL VPN in one-armed mode

Posted on 2008-10-16
2
1,517 Views
Last Modified: 2012-05-05
I have a LAN that is behind a Juniper SSG550M firewall. I also have an ASA-5505 that I want to use strictly as a Client-based SSL VPN server. It has only one interface configured (inside)  as I need it to work in one-armed mode. I have a one-to-one NAT configured on the Juniper for the ASA's IP address and everything allowed to it. All of the routing is configured correctly. For some reason I cannot ping anythign inside the LAN from the outside. I know it isn't a problem with the SSL VPN copnfiguration because I can actually establish a connection to the ASA from the outside via SSL and if I configure this in the traditional manner with an inside and outside interface and NAT it works. Was the ASA designed to work in this fasion? Is there something special I need to do?
0
Comment
Question by:sschuessler
2 Comments
 
LVL 57

Accepted Solution

by:
Pete Long earned 125 total points
ID: 22738431
Have you allowed traffic from your internal network to the remote IP pool in use on your SSL VPN?
Is there a static NAT translation for the above?
If so and you can reach the portal and Anyconnect will connect that should be all you need to do :)
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Download Logs File from Cisco Switch 1 47
Cisco 1811W VLAN configuration problem 3 30
VPN Connection WIndows 10 5 41
port redirection on cisco asa 5520 5 5
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question