VPN problem on ASA

Unanswered Question

Really appreciate for any thought about this problem?

After vpn in, a remote PC is assigned ip address from the ASA. I did ipconfig on the pc and it shows default gateway is The remote pc can access all internal subnets and able to ping the internal interface of the firewall and both ip addresses of the vlan interface of the 6509 where the inside interface of the ASA plug to. that vlan interface has ip addresses and which is a secondary address

The problem is all internal devices including the ASA can NOT ping The servers push some updates to the remote PC, but that does not work.

I turn off the firewall on the PC.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
srue Wed, 12/05/2007 - 17:24

this sounds like a nat 0 issue.

access-list nat0_acl permit ip any

nat (inside) 0 access-list nat0_acl

do you have anything like that in your config?

is nat-control enabled (sh run nat-control)


This Discussion