Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
363
Views
0
Helpful
1
Replies

ASA 5505 VPN with NEM

kumlait2004
Level 1
Level 1

‎12-11-2007 01:58 AM

Hi!

Im having trouble setting up two ASA5505 with EzVPN. One is head and one is client. Without NEM everything works fine. With NEM it connects but cant ping anything or use the split tunnel to access Internet. See attached configs.

With NEM enabled the Head gives the following error:

No translation group found for icmp src outside:192.168.10.2 dst inside:192.168.1.201 (type 8, code 0)

Any ideas ?

The Public IP addressesa and gateway are changed to 9's in the first three parsts of the address.

Thanks! /Bjorn

Labels:
Preview file
4 KB
Preview file
3 KB
Preview file
3 KB
0 Helpful
1 Reply 1

ggilbert
Cisco Employee
Cisco Employee

‎12-11-2007 07:14 AM

HEllo,

Add this command to the head end side.

access-list inside_nat0_outbound extended permit ip 192.168.1.0 255.255.255.0 192.168.10.0 255.255.255.0

This should fix your issue.

Rate this post if it helps.

Cheers,

Gilbert

0 Helpful
Customers Also Viewed These Support Documents