02-18-2008 11:06 AM - edited 03-11-2019 05:04 AM
Hello All,
I am attempting to allow remote vpn users access to a "shared drive" but I am running into problems. I have established the following:
1) A successfull VPN connection
2) VPN users get IP addresses in the following range: 192.168.1.0/24
When I attempt to allow the users access to the internal network which is on the 10.88.0.0 subnet, it errors out.
However, I am able to succesfully get out to the Internet after I VPN into my network but I JUST CANNOT access the shared drive.
The following information might be relavent:
ASA version 7.7(2)
On Static NAT for the Domain Controller
Internal: 10.88.0.2
External: 12.x.x.x
Firewall
Internel: 10.88.0.4
External: 12.x.x.x.
I have also attached a screen shot of the "Packet Trace" I performed. The error says it is a NATing issue. Any help would be appriciated. Thanks.
02-18-2008 11:10 AM
Could you post the config?
02-18-2008 11:20 AM
access-list nonat permit ip 10.88.0.0/24 192.168.1.0/24
nat (inside) 0 access-list nonat
isakmp nat-t 10
Your vpn will work after that.
CCIE Security
02-18-2008 12:40 PM
02-18-2008 01:09 PM
Thank you very much. It worked !! Can you explain this command? I know it created a NAT exemption but I am clueless as to what it exactly means. Thanks !!!
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: