ssl vpn default gateway issue

Unanswered Question
Feb 1st, 2008

I have a question about ssl vpn with asa 5520

I enabled the sslvpn on ASA 5520. and I looked the my pc's routing table.

the routinb table like below

Ethernet adapter 로컬 영역 연결:

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Broadcom NetLink (TM) Gigabit Ethern

et

Physical Address. . . . . . . . . : 00-11-11-11-aa-bb

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 192.168.1.1

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . :

DNS Servers . . . . . . . . . . . : 192.168.10.1

Ethernet adapter Cisco AnyConnect VPN Client Connection:

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Cisco AnyConnect VPN Virtual Minipor for win

Physical Address. . . . . . . . . : 00-05-9A-3C-7A-00

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 10.36.36.1

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 10.36.36.2

DNS Servers . . . . . . . . . . . : 10.47.2.10

10.32.0.13

C:\Documents and Settings\admin>

the default gateway is 10.36.36.2, but I would like to config to 10.36.36.1

like pc's ip address and subnet mask 255.255.255. and I want to keep my real gateway!

Is it possible with SSL vpn in ASA 5520?

If possible, Can you give to config to me in cli?

My last purpose is that I want to use vpn network to my job and I enjoy web suffing

in sametime.

I must do to sslvpn.. I used to solve with IPsec client previously

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
tstanik Thu, 02/07/2008 - 09:24

You can not change the default gateway IP to 10.36.36.1 because then your local PC IP address and the default gateway IP address will become the same, which is not allowed . Also this will impact other users if they are also connecting to the office using SSL vpn.

richardowen123 Fri, 02/15/2008 - 02:22

configure a split tunnel on the group-policy, client config, general client parameter.

Rich

Actions

This Discussion