cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
700
Views
0
Helpful
1
Replies

Using mobile VPN tunnel on secondary Public IP

yugandharm
Level 1
Level 1

Hi,

we are having Cisco ASA 5510 appliance which is having Outside, inside and DMZ zones. we are having set of public IP pool. For example out side interface is having 1.1.1.1 public IP and 1.1.1.2 is free IP, not using any where. i want to access Mobile VPN users through 1.1.1.2 and 1.1.1.1 is for internet traffic for internal users.

please help me on this

Regards,

Yugandhar. M

1 Reply 1

Herbert Baerten
Cisco Employee
Cisco Employee

You can't because the VPN users always have to connect to the interface address (well, I suppose you could configure a load balancing cluster with one member...),

However you can simply do the opposite, i.e. let your vpn client users connect to 1.1.1.1 and use 1.1.1.2 to NAT your internal users.

nat (inside) 1  0.0.0.0  0.0.0.0

global (outside) 1  1.1.1.2

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: