Solved

Setting up Cisco ASA 5510 for SSL VPN woes

Posted on 2011-03-14
4
439 Views
Last Modified: 2012-05-11
I have gone through the steps provided by Cisco to setup an SSL VPN for use with the Any Connect client. The VPN connection establishes fine and the client receives the correct IP address, however it cannot ping or reach any of the clients on the network. Is there a step I may had forgotten?

Steps I followed: http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008071c428.shtml
0
Comment
Question by:ICG
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 18

Expert Comment

by:jmeggers
ID: 35131022
What version of code are you running on the ASA?  It's most likely a NAT issue.
0
 
LVL 1

Author Comment

by:ICG
ID: 35131150
I was assuming it was a NAT or ACL issue as well. It's ASA version 8.2.4.
0
 
LVL 1

Author Comment

by:ICG
ID: 35132370
I believe I am lacking the NAT exemption rules. Our address pool is 192.168.10.0 /24. The address pool assigned to the vpn clients is 192.168.10.30-35. How should the exemption rule look?
0
 
LVL 9

Accepted Solution

by:
gavving earned 500 total points
ID: 35133632
Check to see if you have a 'nat (inside) 0 access-list blahblah' command.  If you have an access-list blahblah then add my entry below to it.  Otherwise add both entries.

access-list nonat permit ip 192.168.10.0 255.255.255.0 192.168.10.0 255.255.255.0
nat (inside) 0 access-list nonat

0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

From Cisco ASA version 8.3, the Network Address Translation (NAT) configuration has been completely redesigned and it may be helpful to have the syntax configuration for both at a glance. You may as well want to read official Cisco published AS…
OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question