Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
804
Views
0
Helpful
1
Replies

How can I assign IP pools of different subnet to anyconnect clients?

simon.law
Level 1
Level 1

‎06-28-2010 02:27 AM - edited ‎02-21-2020 04:42 PM

Hi,

I am trying to set up my ASA 5510 ver 8.3 (ASDM 6.3). My inside network is 192.168.1.0 mask 255.255.255.0. My Anyconnect clients can access the inside network if I use an address pool of the same subnet. When I use an address pool of different subnet such as 172.16.1.*, Anyconnect clients can connect but they can't access the inside network. Please help!

Thanks,

Simon

Labels:
0 Helpful
1 Reply 1

Jennifer Halim
Cisco Employee
Cisco Employee

‎06-28-2010 03:44 AM

You would need to create NAT exemption for ip pool in different subnet as follows:

object network obj-192.168.1.0

     subnet 192.168.1.0 255.255.255.0

object network obj-172.16.1.0

     subnet 172.16.1.0 255.255.255.0

nat (inside,outside) source static obj-192.168.1.0 obj-192.168.1.0 destination static obj-172.16.1.0 obj-172.16.1.0

Hope that helps.

0 Helpful
Customers Also Viewed These Support Documents