VPN remote Access

memo12345678
memo12345678 used Ask the Experts™
on
Dear ,

i do config VPN  remote access in my ASA   now all user outside can connect to VPN when they write in Host remote access (80.80.80.80) but I want from inside i have some users want have  VPN remote client when I put in host software vpn remote client(80.80.80.80)  they can't connect VPN  , so tell me what is solution we I to to let internal  can access to remote VPN client
note
1- I can't put static ip to user inside
2- if need i'll send config ASA

Drawing1.jpg
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®

Author

Commented:
note I just want  PC X and PC Y  have remote VPN but  they can't connect to VPN client
Expert
Top Expert 2012
Commented:
So you want PC's on the inside of the ASA connect to the outside interface to set up a vpn?
Sorry, that is not going to work.

Or are you trying something different?

Author

Commented:
yes from inside to outside first one , I know that is doesn't work so give solution what i do !!!
Introduction to Web Design

Develop a strong foundation and understanding of web design by learning HTML, CSS, and additional tools to help you develop your own website.

Author

Commented:
can I put another group VPN remote client config also in interface inside of ASA !!!
Ernie BeekExpert
Top Expert 2012

Commented:
Normally you set up a VPN so you can connect over the internet (in a safe way) to resources behind your firewall. These PC's are already on the safe side, so why do you want to use a VPN?
Second, when the outside users set up the VPN, where can they connect to after the VPN is established?

Author

Commented:
for inside I have more than 100000 users over city and have DB so secure I just want 2 user can access to this database from inside .
for question 2 sorry  really I don't understand
Ernie BeekExpert
Top Expert 2012

Commented:
When the outside user set up the VPN, to what machines on the inside network can they connect? Is that the DB server?

Author

Commented:
they connect to Server in DMZ

Author

Commented:
about inside did u have idea to solve my problem
Ernie BeekExpert
Top Expert 2012
Commented:
Well, I was thinking about session authentication. Have a read through this:
http://www.ciscopress.com/articles/article.asp?p=1552963&seqNum=4
I think this might be what you're looking for.

Author

Commented:
h

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial