VPN client cant access all the network

mahmoud.yasin · ‎06-14-2010

I have an ASA firewall configured for VPN client access, the users can connect remotelly and the connection success all the times, but the remote users cant access all the network resources all the times;

they can ping internal network PCs, but for other access requests (remote desktop, sharing....) some times working and some times didnt.

any help...

Federico Coto Fajardo · ‎06-14-2010

Hi,

If sometimes it works, I would say the configuration is fine.

When this happens, the tunnel goes down?

When you can't access internal resources via RD or any other application, can you still PING through the tunnel?

Federico.

mahmoud.yasin · ‎06-15-2010

Yes I can ping during the time i cant access through the other services

like RDP.

Federico Coto Fajardo · ‎06-15-2010

If you can PING all the time, then the tunnel is not going down.

Perhaps the TCP/UDP timeouts are kicking in? Check the ''sh run timeout''

Also, are you getting any logs from the ASA when that happens?

Federico.

mahmoud.yasin · ‎06-16-2010

Hi

i solved the problem; it seems that there was a loop in the network (the firewall was able to see the inside servers MAC addresses from two interfaces....)

and this caused the services to timeout.

appreciate your help