I was able to get to the internal resources by having the same VPN pool as the internal IP address (192.168.100.0). Now, I want to have a different VPN pool from the internal IP address. For example, I want to have the VPN pool from 192.168.101.1 - 192.168.101.250. I was able to login to VPN client, but I cannot ping or access the internet resource (192.168.100.13). Can you help me? Attached is the config file.
Definitely safe to remove them.
The "prompt hostname context" command is useful if you have failover configured, and would like to know whether it's the active or standby unit, and if you have multiple context configured on the firewall. It just give you more information on the prompt.
Here is the command reference for "prompt":
The rest of the config is for Smart Call Home. It is a new feature in version 8.2.2 and has limited functionality as it has just been introduced.
Here is a little bit of read of the feature if you are interested:
If you are testing with ping, you would need to add the following:
Also your internal LAN default gateway should be the ASA inside interface (192.168.100.100), assuming that you are trying to access resources within 192.168.100.0/24 subnet.
Also, just want to confirm that you have vpn client configured as the first post config does not include that.
Sounds like you need to add the new VPN pool from 192.168.101.1 - 192.168.101.250 to your Inside_nat0_outbound ACL:
Should look like this now both the internal and VPN pool address ranges included:
access-list Inside_nat0_outbound extended permit ip any 192.168.100.0 255.255.255.0
access-list Inside_nat0_outbound extended permit ip any 192.168.101.0 255.255.255.0
Hope this helps,