Remote Access VPN: Connecting but cannot access inside network

Unanswered Question
Jun 3rd, 2007
User Badges:


I have successfully created a remote access vpn on ASA5520. The Cisco Client software connects to remote ASA box and assigns the PC an IP address but I cannot access the Insode network once connected. I have enabled "sysopt connection permit-vpn" to permit VPN traffic and created an accesslist to permit traffic 2 inside network but nothing happens.

What am I missing out?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
acomiskey Mon, 06/04/2007 - 05:12
User Badges:
  • Green, 3000 points or more

Could you post a clean config?

Do you have crypto isakmp nat-traversal?

ggilbert Mon, 06/04/2007 - 11:42
User Badges:
  • Cisco Employee,


Can you make sure you have NAT exemption configured on the ASA for the network.

Send the outputs of

sh run | in nat

sh run | in ip local

sh vpn-sessiondb remote



yiyan Mon, 06/04/2007 - 23:21
User Badges:

Hey,I think u should check these UDP port:500,4500,10000,10001.

I met the same issue last time and at last I find the UDP port 10000 is not allowed in my firewall,and then the problem is fixed.


This Discussion