ASA remote access VPN can not access internet
Posted on 2011-02-12
i have a Cisco ASA firewall, soft version is 8.2(1), i did configure remote access VPN on it, i could connect it properly via Cisco VPN client and also access internal or DMZ network is fine, but i can't access internet with VPN connected, following is the configuration of ASA, so help me on this please.
access-list VPN-USER extended permit ip 10.0.0.0 255.0.0.0 10.140.5.0 255.255.255.0
access-list VPN-USER extended permit ip 192.168.0.0 255.255.0.0 10.140.5.0 255.255.255.0
access-list VPN-USER extended permit ip 172.16.0.0 255.240.0.0 10.140.5.0 255.255.255.0
access-list VPN-USER extended permit ip any 10.140.5.0 255.255.255.0
global (outside) 1 interface
nat (outside) 1 10.140.5.0 255.255.255.0
nat (inside) 0 access-list VPN-USER
nat (inside) 1 0.0.0.0 0.0.0.0
nat (DMZ) 0 access-list VPN-USER
nat (DMZ) 1 0.0.0.0 0.0.0.0
explanations: 10.140.5.0/24 is the network range for VPN clients, i have a another ASA anyway with the same configuration and everything works fine, the only different is that ASA is more higher soft version: 8.2(2)4.
i am really puzzled not sure whats wrong.
thanks very much