VPN remote Access

memo12345678
memo12345678 used Ask the Experts™
on
Dear ,

i do config VPN  remote access in my ASA   now all user outside can connect to VPN when they write in Host remote access (80.80.80.80) but I want from inside i have some users want have  VPN remote client when I put in host software vpn remote client(80.80.80.80)  they can't connect VPN  , so tell me what is solution we I to to let internal  can access to remote VPN client
note
1- I can't put static ip to user inside
2- if need i'll send config ASA

Drawing1.jpg
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®

Author

Commented:
note I just want  PC X and PC Y  have remote VPN but  they can't connect to VPN client
Senior infrastructure engineer
Top Expert 2012
Commented:
So you want PC's on the inside of the ASA connect to the outside interface to set up a vpn?
Sorry, that is not going to work.

Or are you trying something different?

Author

Commented:
yes from inside to outside first one , I know that is doesn't work so give solution what i do !!!
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

Author

Commented:
can I put another group VPN remote client config also in interface inside of ASA !!!
Ernie BeekSenior infrastructure engineer
Top Expert 2012

Commented:
Normally you set up a VPN so you can connect over the internet (in a safe way) to resources behind your firewall. These PC's are already on the safe side, so why do you want to use a VPN?
Second, when the outside users set up the VPN, where can they connect to after the VPN is established?

Author

Commented:
for inside I have more than 100000 users over city and have DB so secure I just want 2 user can access to this database from inside .
for question 2 sorry  really I don't understand
Ernie BeekSenior infrastructure engineer
Top Expert 2012

Commented:
When the outside user set up the VPN, to what machines on the inside network can they connect? Is that the DB server?

Author

Commented:
they connect to Server in DMZ

Author

Commented:
about inside did u have idea to solve my problem
Ernie BeekSenior infrastructure engineer
Top Expert 2012
Commented:
Well, I was thinking about session authentication. Have a read through this:
http://www.ciscopress.com/articles/article.asp?p=1552963&seqNum=4
I think this might be what you're looking for.

Author

Commented:
h

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial