Remote VPN access

Unanswered Question
Oct 28th, 2008


I am confusing , pls need assistance. I have 5520 ASA. This Firewall is connected internet and inside users browse net via nat my authority want some of remote user access the LAN via VPN client connection. I configure Remote VPN. Its ok.




------------For connect net I do---

access-list 102 permit Ip any any

access-list 102 permit TCP any any

access-group 102 in interface outside

nat (inside) 1 0 0

* in this config clint can connect net

----------- For access Remote VPN---

IP local pool VPNpool

access-list 105 permit IP any

nat (inside) 0 access-list 105


for Remote VPN access i need to configure no nat ?

but in Remote VPN document no mention any nat



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
guibarati Wed, 10/29/2008 - 09:18

Hi, there besides all the other things, yes, you have to configure nat 0 or "no nat" so the internal hosts are not nated when returning traffic to the vpn client


This Discussion