06-03-2007 10:26 PM - edited 02-21-2020 03:05 PM
Hello,
I have successfully created a remote access vpn on ASA5520. The Cisco Client software connects to remote ASA box and assigns the PC an IP address but I cannot access the Insode network once connected. I have enabled "sysopt connection permit-vpn" to permit VPN traffic and created an accesslist to permit traffic 2 inside network but nothing happens.
What am I missing out?
06-04-2007 05:12 AM
Could you post a clean config?
Do you have crypto isakmp nat-traversal?
06-04-2007 11:42 AM
Edward,
Can you make sure you have NAT exemption configured on the ASA for the network.
Send the outputs of
sh run | in nat
sh run | in ip local
sh vpn-sessiondb remote
Thanks
Gilbert
06-04-2007 11:21 PM
Hey,I think u should check these UDP port:500,4500,10000,10001.
I met the same issue last time and at last I find the UDP port 10000 is not allowed in my firewall,and then the problem is fixed.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide