troubleshooting Question

AnyConnect to DMZ

Avatar of XorgeD
XorgeDFlag for United States of America asked on
Cisco
4 Comments1 Solution973 ViewsLast Modified:
Hi,

I am new to the ASA, I need some help with the following

I need an SSL VPN client to access only a particular DMZ Sub interface/VLAN, I have several. Some of my internal servers access some servers on the DMZ with no problem there, each DMZ VLAN has NAT so every VLAN outputs traffic through a different public IP

I configured the 5520 for SSL VPN, the AnyConnect client is "Connecting", auth is local
the client is receiving an IP from the vpnpool I configured but I don't know how to input the NAT Exemption Rules, Routes or ACL's for the VPN Client to reach the desired VLAN

The idea is to build a config that depending on the user connecting, the SSL VPN tunnels points that connection to the appropriate DMZ/VLAN

Thanks in advance

Xorg
ASKER CERTIFIED SOLUTION
ArneLovius

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 4 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 4 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros