Remote Desktop Doest work over a VPN between ASA and 1841

Unanswered Question
Mar 15th, 2010
User Badges:

I have configured a VPN between ASA and 1841, every thing is working fine . Except Remote Desktop


All the users on the Cisco 1841 side can access Users on ASA side using Remote Desktop, but from ASA side i cant access 1841 users on both locations NAT is enabled.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Federico Coto F... Mon, 03/15/2010 - 18:18
User Badges:
  • Green, 3000 points or more

Hi,


You can make sure that is not an MSS problem on the ASA side by inserting the following policy:


Pixfirewall(config)#access-list http-list2 permit tcp any any

pixfirewall(config)#
pixfirewall#configure terminal
pixfirewall(config)#
pixfirewall(config)#class-map http-map1
pixfirewall(config-cmap)#match any   
pixfirewall(config-cmap)#exit
pixfirewall(config)#tcp-map mss-map
pixfirewall(config-tcp-map)#exceed-mss allow
pixfirewall(config-tcp-map)#exit
pixfirewall(config)#policy-map

pixfirewall(config-pmap)#class http-map1
pixfirewall(config-pmap-c)#set connection advanced-options mss-map
pixfirewall(config-pmap-c)#exit
pixfirewall(config-pmap)#exit

The service policy is already applied so you do not have to apply it again.


Federico.

DialerString_2 Wed, 03/24/2010 - 12:57
User Badges:
  • Bronze, 100 points or more

Sure it's not being blocked on the "inside" acl on the ASA? Can you past the acl and nat statements here? You can als debug crypto, run ter mon and try to RDP to a device behind the 1841.

stevjarbeck Thu, 03/25/2010 - 11:29
User Badges:

I'm sure you've already done this but this is not a DNS issue correct?  You have tried the actual IP address of each host you are trying to RDP to?

Actions

This Discussion