ASA VPN client question

Answered Question
Jul 25th, 2008
User Badges:

Hello.

I have a question about a connection between an asa5505-sec-bun-k9 (that acts as Easy VPN client) and a EASY VPN server.

The connection with the Easy VPN server is OK but I cannot more connect to internet and create VPN connections to my ASA5505 when I enable the feature.

Is this a normal condition with Easy VPN Client enabled?

Correct Answer by Marwan ALshawi about 8 years 9 months ago

cool

please, Rate if helpful

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Marwan ALshawi Fri, 07/25/2008 - 02:45
User Badges:
  • Purple, 4500 points or more
  • Community Spotlight Award,

    Best Publication, December 2015

u need to do split tunneling on ur vpn server and apply it to the vpn client config on the vpn server that encypt only traffic destined to the server side pravite network


lets say the private network behind the vpn server is 192.168.1.0/24

so make a standard ACL


access-list split standard permit 192.168.1.0 255.255.255.0

group-policy [ur grop policy name] attributes

split-tunnel-policy tunnelspecified

split-tunnel-network-list value split


then when u connect from the easy client only traffic to 192.168.1.0 will go through the tunnel other traffic will not be part of encrypted traffic


good luck


Rate if helpful

Correct Answer
Marwan ALshawi Fri, 07/25/2008 - 05:39
User Badges:
  • Purple, 4500 points or more
  • Community Spotlight Award,

    Best Publication, December 2015

cool

please, Rate if helpful

Actions

This Discussion