cisco Remote VPN issue while changing the VPN ip pool

Unanswered Question
Apr 23rd, 2012

Hi,

We have already implemented Cisco client VPN service on Cisco ASA. My Cisco VPN ip pool is configured 174.26.4.0/22 & My corporate network pool is 172.26.4.0/22. which is working perfectly.

My concern is VPN pool 174.26.4.0/22 is comes under public range so i want to change this pool into private range (172.30.100.0/24)

so i changed below configuration.

no access-list nonat extended permit ip 172.26.4.0 255.255.252.0 174.26.4.0 255.255.252.0
no ip local pool testpool 174.26.4.0-174.26.4.253

access-list nonat extended permit ip 172.26.4.0 255.255.252.0 172.30.100.0 255.255.255.0
ip local pool testpool 172.30.100.1-172.30.100.254

After changing, i am able to connect vpn & vpn machine got ip address 172.30.100.1.

during VPN connection, vpn machine (172.30.100.1) is pinging from corporate network & even take the remote also but from VPN machine (172.30.100.1) I am not able to ping corporate network.

For your information i have added the route on corp machine towards ASA inside which are earlier doing.

i am not able to understand where is my mistake?

I am attaching the existing config & public ip & natting of server command is removed for security purpose.

Please help us

Regards

vinod Gupta

9810966625

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Average Rating: 0 (0 ratings)
alex.tulio@hotm... Mon, 04/23/2012 - 04:14

Configure your ip pool as 172.26.4.1-172.26.4.50, you just need to get a chunk in your /22 network for you VPN client pools. Then you should be able to ping your corporate LAN.

Sent from Cisco Technical Support iPhone App

Actions

Login or Register to take actions

This Discussion

Posted April 23, 2012 at 12:11 AM
Stats:
Replies:1 Avg. Rating:
Views:384 Votes:0
Shares:0
Tags: No tags.

Discussions Leaderboard

Rank Username Points
1 7,861
2 6,140
3 3,170
4 1,473
5 1,446