VPN access inside

Unanswered Question
Mar 4th, 2008
User Badges:

New to ASA. I used the wizard in asdm to configure a VPN to my site. I am able to access the outside network (Web surfing) but I cannot access any of my internal addresses or VLANS.

I have made so many changes based on many suggestion in the forum, that I am afraid the configs are all messed up. I have done the VPN wizard several times creating several VPN profiles. The profile that seems to make the most sense is KWRE-1. This one when I VPN up can access the Internet. All others cannot. Mt main concern is being able to access all the internal VLANS when I VPN up.

My config is attached:

Thanks for looking.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
brettmilborrow Thu, 03/06/2008 - 16:30
User Badges:

Your nat 0 does not cover your VPN client pool:

access-list inside_nat0_outbound_1 extended permit ip any

ip local pool KW-VPN mask

You should change your acl entry to the following

access-list inside_nat0_outbound_1 extended permit ip any


This Discussion