cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
354
Views
0
Helpful
2
Replies

VPN Clients able to ping but nothing else

Arp_Hiemstra
Level 1
Level 1

Hello,

We have a ASA5520 which vpn clients connect to. They are able to ping but nothing else seems to get thru. Only when i add a static route entry on the server they are trying to connect to which points to the vpn pool address range they are able to connect. What can be causing this??

thanks,

Arp Hiemstra

2 Replies 2

Marwan ALshawi
VIP Alumni
VIP Alumni

have configured the NAT exmption also known as NAT 0 ?

for example ur server is 192.168.1.1 and vpn pool is 10.1.1.0

access-list 100 permit host 192.168.1.1 10.1.1.0 255.255.255.0

nat (inside) 0 access-list 100

if helpful Rate

jdive
Cisco Employee
Cisco Employee

From what is explained, i cant explain why it ping without the route. Your servers should have a route for the range allocated to the vpn client pool, classically the default route. If your default GW is not the ASA, then the router should have a route pointint to the ASA.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: