ASA and VPN Client for Public Internet VPN on a Stick

Unanswered Question
Sep 28th, 2010

Hello Everyone,

i follow this procedure to configure VPN for access internet through ASA : http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00805734ae.shtml

VPN client connected with ASA and can access all inside and wan resource with no_nat. So i want VPN client can access internet through ASA with above procedure configuration, so client can not access to the internet. Subnet for VPN is 10.50.21.0/24

Attached is my configuration.Pls help me to resolve this problem.Thanks for your support time.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
sinv Tue, 09/28/2010 - 10:34

Hi

Please confirm that you have configured the

same-security-traffic permit intra-interface

If this has been configured then :

* Check for the xlate entry for the specific client IP address to see if the translations are being hit.

* Also post any logs or captures that you may have collected at the time of internet access.

Regards,

Sindhuja V

khangphamvu Tue, 09/28/2010 - 21:56

Hello,

I'm sure i have configure same-security-traffic permit intra-interface, attached is log when users VPN and access internet. Do you have solutions for this.

Thanks for your reply.

Namit Agarwal Tue, 09/28/2010 - 22:13

Hi,

Please change the following in the running config  :

FROM :

nat (outside_internet) 1 10.50.21.0 255.255.255.255 dns

TO:

nat (outside_internet) 1 10.50.21.0 255.255.255.0 dns

I hope this helps

Thanks,

Namit

Actions

This Discussion