Guest Network (Easy Question)

Unanswered Question
Dec 5th, 2008
User Badges:


Hey Guys!

Here is my small situation.


Our guest network is only able to get to the internet, so if anyone comes in our building, they will only have access to networks that are less secure.


I want this network to have access to our WEBVPN, which is 216.12.5.2 (its an outside IP address), however when i try to go to this address, it says "page cannot be displayed"..


I believe its an access list on my firewall, but i have tried a few and still cannot hit this site... ANY IDEAS?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
archari Fri, 12/05/2008 - 09:58
User Badges:
  • Cisco Employee,

try a traceroute.. see where it stops. troubleshoot from that point onwards till you hit this ip.

John Blakley Fri, 12/05/2008 - 10:23
User Badges:
  • Purple, 4500 points or more

Is the WEBVPN on the same device that they're going out of? What type of device is this: router, pix, asa?


John

accesshollywood2 Fri, 12/05/2008 - 12:08
User Badges:

This is an ASA 5520...



yes its on the same device.. the guest network is 192.168.40.0 and it the WEBVPN is 216.12.5.2 (outside) which is natted to 172.17.2.81(inside)

John Blakley Fri, 12/05/2008 - 12:24
User Badges:
  • Purple, 4500 points or more

The easiest way to do it since it's on the same device is to add an entry to an internal dns server for the internal address. Normally, you can't send out from one interface and back in the public side to be re-natted. Others may have a trick, but not in this scenario that I'm aware of.


HTH,


John

Actions

This Discussion