CSM 3.1.1 - ASA5200 Tunnel-Group Overlapping Addresses problem

Unanswered Question

The ASA had been configured with remote access vpn using ASDM VPN wizard, and been live for quite sometime. The VPN IP pool is part of inside interface ip subnet.

CSM was incoporated in the network, I managed to integrate with FWSM. But I got problem with ASA5200, where 1 error is causing CSM cannot work to deploy policy or can't save the CSM after some changes.

Please see attached screen shot. It complaint that the Tunnel-Group Overlapping Addresses. Why CSM complaint that ? I dont think any problem to use IP pool on one of the interface subnet.

Is there any work around rather than I need to change IP pool address or , reconfigure the interface ip address to avoid tunnel-group overlapping address ?


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
bwilmoth Tue, 02/26/2008 - 14:06

From the error message I think you may have a vpn address-pool network which is same with one of your interface's network. For example. you may have a interface while you have a vpn address pool Please kindly check your ASA config and change accordingly.


This Discussion