04-22-2008 10:45 AM - edited 02-21-2020 03:41 PM
Hi,
I have a Cisco ASA and quite often have a clients come in and want to use their Cisco VPN clients to connect to their remote networks.
What do I need to open on my Cisco ASA to allow this traffic to pass through it with nothing blocking it?
04-22-2008 01:08 PM
Usually i have to enable Nat traversal for this
04-22-2008 04:54 PM
To cisco vpn from inside behind asa to outside add this to your global polciy (IPsec pass through )
ciscoasa(config)# policy-map global_policy
ciscoasa(config-pmap)# class inspection_default
ciscoasa(config-pmap-c)# inspect ipsec-pass-thru
ciscoasa(config-pmap-c)#exit
if you want to read about it here is some Backround info
http://www.cisco.com/en/US/docs/security/asa/asa72/command/reference/i2_72.html#wp1668213
HTH
Rgds
Jorge
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: