Cisco ASA AnyConnect Access Rule
Posted on 2011-03-17
I have a Cisco ASA 5510 that I can connect to using the AnyConenct VPN Client.
I am assigned an IP of 192.168.15.2
The outside interface of the ASA is 192.168.10.7
From 192.168.15.2 I can ping the ASA outside interface. However, if I try and ping another host (192.168.10.1) this fails. If I try and ping from 192.168.1.1 to 192.168.15.2 I get this error:
3 Mar 17 2011 20:43:06 106014 192.168.10.1 192.168.15.2 Deny inbound icmp src outside:192.168.10.1 dst outside:192.168.15.2 (type 8, code 0)
Should I "believe" that the IP assigned to me of 192.168.15.2 is indeed on the outside interface? I have no physical interface, or VLAN that is assigned a 192.168.15.x address
Is this an access or a NAT issue?