Come for the solution, stay for everything else.

Welcome to our community! We’re working tech professionals who love collaborating.

troubleshooting Question

ASA 5506 EasyVPN & DMZ "ERROR: This configuration cannot be modified with Cisco Easy VPN Remote enabled."

travisryan asked on 2/17/2016

7 Comments1 Solution730 ViewsLast Modified: 2/24/2016

I need to set up a DMZ interface for my ASA 5506 (IOS ver 9.5.2) that's set up as an Easy VPN client. When I try to modify the third interface I get this: "ERROR: This configuration cannot be modified with Cisco Easy VPN Remote enabled."

Googling around I found this thread which says such a thing should be possible but doesn't mention the above error message: https://supportforums.cisco.com/discussion/12460931/dmz-interface-asa-5506-x

Googling around for that error message I can only find the below two posts that don't seem to have anything to do with my issue:

https://supportforums.cisco.com/discussion/11219271/ssl-vpn-not-working
https://supportforums.cisco.com/discussion/11092461/asa5505-vlan1-subnet-change-remotely

I have the sneaking suspicion I can't have Easy VPN (client) and DMZ set up on the same device but I hope I'm wrong. Any help is appreciated.

Comment

Watch Question

ASKER CERTIFIED SOLUTION

Ernie Beek

Senior infrastructure engineer

Top Expert 2012

Join our community to see this answer!

Unlock 1 Answer and 7 Comments.

Start Free Trial

Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert

See if this solution works for you by signing up for a 7 day free trial.

Unlock 1 Answer and 7 Comments.

Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.