Solved

CISCO ASA 5505 VPN CLIENT CONNECTION

Posted on 2014-02-16
3
979 Views
Last Modified: 2014-02-18
Hello

The question is pretty simple. I can successfully connect to my ASA 5505  firewall via cisco vpn client 64 bit , i can ping any ip address on the LAN behind ASA but none of the LAN computers can see or ping the IP Address which is assigned to my vpn client from the ASA VPN Pool.

The LAN behind ASA is 192.168.0.0 and the VPN Pool for the cisco vpn client is 192.168.30.0

I would appreciate some help pls :)

asa1.txt

Regards
George
0
Comment
Question by:giorgosy78
3 Comments
 
LVL 9

Expert Comment

by:ffleisma
ID: 39862691
is there a permissive ACL rule in place for the following?

source: 192.168.0.0
destination: VPN pool
interface: inside

also, is there a NAT exempt in place for the same traffic?
0
 

Author Comment

by:giorgosy78
ID: 39862902
i have attached the configuration with my post i don't know if you have seen it. In any case i have this rule:

access-list inside_nat0_outbound extended permit ip 192.168.0.0 255.255.255.0 VPN_POOL2 255.255.255.0
nat (inside) 0 access-list inside_nat0_outbound

However still it doesnt work..i dont know if i m missing something else..
0
 
LVL 15

Accepted Solution

by:
Robert Sutton Jr earned 500 total points
ID: 39865476
I don't see that entry in your access group.
0

Featured Post

Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Clarification about access via WAN 6 36
Configuring WAN interface on Cisco ASA5525 3 26
VLAN Question 13 44
ACL not working 11 18
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question