Remote Access VPN users unable to access inside network behind ASA

Unanswered Question
Mar 15th, 2009
User Badges:

Hi,


My VPN tunnel is terminated on outside of ASA for the remote access vpn on a global ip. Inside of my vpn box i.e ASA is connected with FWSM.


I have many vlans configured on FWSM for different inside networks. In turn each inside vlan on fwsm is connected to L3 switch via L3 link. Behind each L3 switch there is inside network with diff ip pool and i want to give access of thses inside networks to remote access users coming through vpn.


My vpn users sucessfully logged in and able to access all vlans configured on fwsm but unable to access network configured behind L3 switch.


Need help to resolve this problem


Regards,

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
JamesLuther Sun, 03/15/2009 - 10:44
User Badges:
  • Silver, 250 points or more

Hi,


I would double check the routing all the way through.


Are the IPs for the remote access clients on the L3 switch? Are the routes for the L3 switch networks on the ASA?



Regards

9898nishit Mon, 03/16/2009 - 00:40
User Badges:

HI,


On L3 i have configured default route towards my fwsm and fwsm has route for the remote access users with next-hop ip address of ASA vpn box.


Routes for the L3 switch is configured on ASA.


From ASA i am able to ping L3 and network behind L3.


Regards,

Nishith

JamesLuther Mon, 03/16/2009 - 01:38
User Badges:
  • Silver, 250 points or more

Hi,


I assume you've also allowed the traffic through all the ACLs on the ASA, FWSM and anywhere else?



Regards

9898nishit Mon, 03/16/2009 - 02:28
User Badges:

Hi,


Yes i have allowed any to any ACL on the ASA & FWSM.


Regards,

Nishith

Actions

This Discussion