Using mobile VPN tunnel on secondary Public IP

Unanswered Question
Dec 8th, 2009

Hi,


we are having Cisco ASA 5510 appliance which is having Outside, inside and DMZ zones. we are having set of public IP pool. For example out side interface is having 1.1.1.1 public IP and 1.1.1.2 is free IP, not using any where. i want to access Mobile VPN users through 1.1.1.2 and 1.1.1.1 is for internet traffic for internal users.


please help me on this


Regards,

Yugandhar. M

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Herbert Baerten Tue, 12/08/2009 - 03:27

You can't because the VPN users always have to connect to the interface address (well, I suppose you could configure a load balancing cluster with one member...),


However you can simply do the opposite, i.e. let your vpn client users connect to 1.1.1.1 and use 1.1.1.2 to NAT your internal users.


nat (inside) 1  0.0.0.0  0.0.0.0

global (outside) 1  1.1.1.2

Actions

This Discussion