Solved

Cisco ASA 5510 Clientless VPN from guest interface to inside interface

Posted on 2013-02-07
5
461 Views
Last Modified: 2013-02-14
I have the clientless VPN setup and working from the outside interface to my inside interface.  I have an additional interface called guest.  How do I configure the device so someone connected via the guest interface can use the clientless VPN to access the inside interface?

Thanks!
0
Comment
Question by:jmichael18
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 37

Expert Comment

by:ArneLovius
ID: 38867802
Just enable it on the Guest interface.
0
 
LVL 17

Expert Comment

by:MAG03
ID: 38873795
Enter the following commands

conf t
webvpn
enable Guest
0
 

Author Comment

by:jmichael18
ID: 38886842
Thanks for the advice but webvpn is already enabled on guest.
0
 
LVL 37

Accepted Solution

by:
ArneLovius earned 500 total points
ID: 38887360
are they trying to connect via a hostname that resolves to the outside interface ?

If this is the case, presuming that the interface name is guest, add in global config, the line

alias (guest) <guest> <out> 255.255.255.255

Open in new window

where <guest> is the guest interface IPv4 address and <out> is the outside interface IPv4 address, so the end result looks like

alias (guest) 192.168.199.1 1.2.3.4 255.255.255.255

Open in new window

0
 
LVL 17

Expert Comment

by:MAG03
ID: 38887962
could you please post a sanitized config of the ASA.
0

Featured Post

Retailers - Is your network secure?

With the prevalence of social media & networking tools, for retailers, reputation is critical. Have you considered the impact your network security could have in your customer's experience? Learn more in our Retail Security Resource Kit Today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have an old router lying around the house that you don’t know what to do with? Check the make and model, then refer to either of these links to see if its compatible. http://www.dd-wrt.com/site/support/router-database http://www.dd-wrt.c…
Juniper VPN devices are a popular alternative to using Cisco products. Last year I needed to set up an international site-to-site VPN over the Internet, but the client had high security requirements -- FIPS 140. What and Why of FIPS 140 Federa…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question