VPN access inside

Unanswered Question
Mar 4th, 2008

New to ASA. I used the wizard in asdm to configure a VPN to my site. I am able to access the outside network (Web surfing) but I cannot access any of my internal addresses or VLANS.

I have made so many changes based on many suggestion in the forum, that I am afraid the configs are all messed up. I have done the VPN wizard several times creating several VPN profiles. The profile that seems to make the most sense is KWRE-1. This one when I VPN up can access the Internet. All others cannot. Mt main concern is being able to access all the internal VLANS when I VPN up.

My config is attached:

Thanks for looking.

John

Attachment: 
I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
brettmilborrow Thu, 03/06/2008 - 16:30

Your nat 0 does not cover your VPN client pool:

access-list inside_nat0_outbound_1 extended permit ip any 192.168.30.192 255.255.255.192

ip local pool KW-VPN 192.168.30.10-192.168.30.254 mask 255.255.255.0

You should change your acl entry to the following

access-list inside_nat0_outbound_1 extended permit ip any 192.168.30.0 255.255.255.0

Actions

This Discussion