Getting wrong default-gateway on vpn client

Unanswered Question
Jan 28th, 2010
User Badges:

There has been other threads on this subject, but either it was unanswered or the user fixed it and the solution doesn't apply here.

The ASA is configured to hand off an IP from an internal DHCP server.  The client gets the IP and the gate way should be set to itself, however it gets set to x.x.x.1.  x.x.x.1 is no where to be found on the ASA.  I am pasting the relevent config if it helps.  Thanks,  Tom

interface Ethernet0/0
speed 100
duplex full
security-level 100
ip address
interface Ethernet0/1
speed 100
duplex full
security-level 0
ip address y.y.y.y

same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
object-group network All_Brazil
access-list EXTERNAL_access_in extended permit ip any
access-list EXTERNAL_access_in extended permit icmp any any
access-list INTERNAL_nat_outbound extended permit ip object-group All_Brazil any
access-list EXTERNAL_nat0_outbound extended permit ip
access-list INTERNAL_nat0_outbound extended permit ip any
global (EXTERNAL) 1 interface
nat (INTERNAL) 0 access-list INTERNAL_nat0_outbound
nat (INTERNAL) 1 access-list INTERNAL_nat_outbound
nat (EXTERNAL) 0 access-list EXTERNAL_nat0_outbound
nat (EXTERNAL) 1
access-group EXTERNAL_access_in in interface EXTERNAL
route EXTERNAL 1
route INTERNAL 1
route INTERNAL 1
route INTERNAL 1

group-policy ABC_SA internal
group-policy ABC_SA attributes
wins-server value
dns-server value
dhcp-network-scope none
vpn-tunnel-protocol IPSec
default-domain value

tunnel-group ABC_SA type remote-access
tunnel-group ABC_SA general-attributes
authentication-server-group SDI
default-group-policy ABC_SA
tunnel-group ABC_SA ipsec-attributes
pre-shared-key *

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion