02-18-2008 11:06 AM - edited 03-11-2019 05:04 AM
Hello All,
I am attempting to allow remote vpn users access to a "shared drive" but I am running into problems. I have established the following:
1) A successfull VPN connection
2) VPN users get IP addresses in the following range: 192.168.1.0/24
When I attempt to allow the users access to the internal network which is on the 10.88.0.0 subnet, it errors out.
However, I am able to succesfully get out to the Internet after I VPN into my network but I JUST CANNOT access the shared drive.
The following information might be relavent:
ASA version 7.7(2)
On Static NAT for the Domain Controller
Internal: 10.88.0.2
External: 12.x.x.x
Firewall
Internel: 10.88.0.4
External: 12.x.x.x.
I have also attached a screen shot of the "Packet Trace" I performed. The error says it is a NATing issue. Any help would be appriciated. Thanks.
02-18-2008 11:10 AM
Could you post the config?
02-18-2008 11:20 AM
access-list nonat permit ip 10.88.0.0/24 192.168.1.0/24
nat (inside) 0 access-list nonat
isakmp nat-t 10
Your vpn will work after that.
CCIE Security
02-18-2008 12:40 PM
02-18-2008 01:09 PM
Thank you very much. It worked !! Can you explain this command? I know it created a NAT exemption but I am clueless as to what it exactly means. Thanks !!!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide