Solved: ASA 5505 VPN NAT - Cisco Community

651

Views

0

Helpful

2

Replies

Hi all,

I am working with an ASA 5505 and am trying to get remote VPN working. I used the wizard to set up the connection and I can connect to the appliance. When I do connect, I cannot do anything, like surf, nslookup, access the ASDM, etc. I think NAT is where I need to be looking and I have tried NAT exempt rules with no luck. Can anyone help with this?

Thanks

1 Accepted Solution

Accepted Solutions

You need this ( if doing full tunnel ra vpn)

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00805734ae.shtml

example

same-security-traffic permit intra-interface

global (outside) 1 interface

nat (outside) 1

as for accessing ASA through RA tunnel or any ipsec tunnel you need couple of statements:

management-access inside ( provided your inside interface nameif is inside)

http inside

telnet inside

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/m.html#wp1987122

Jorge Rodriguez

View solution in original post

2 Replies 2

You need this ( if doing full tunnel ra vpn)

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00805734ae.shtml

example

same-security-traffic permit intra-interface

global (outside) 1 interface

nat (outside) 1

as for accessing ASA through RA tunnel or any ipsec tunnel you need couple of statements:

management-access inside ( provided your inside interface nameif is inside)

http inside

telnet inside

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/m.html#wp1987122

Jorge Rodriguez

Thanks so much!

Review Cisco Networking products for a $25 gift card