question on defining IP pool for remote access vpn clients

Unanswered Question
Jun 24th, 2009
User Badges:

I want to setup a remote access vpn on an ASA firewall. I had a question regarding what ip pool range I should be using. Let's say my inside network is 192.168.100.x, can I use any private ip pool range for the remote users, does it matter? Or do I need to slice off a chunk of that subnet for them? clarificatioin would be appreciated. thanks

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)

Normally I always use another spare IP range, that is not being used anywhere else.

This hepls me troubleshoot any issues - when I ask for an IP address, I can tell if it's a local or remote VPN user.

If you use a seperate IP, then you have to make sure all L3 devices know the ASA is the next hop for that IP subnet.



This Discussion