ASA VPN

muhammadqasim786 · ‎07-21-2014

I have two ASA's one at Head Office and other at Branch office. Users connect to Head Office for accessing Branch Office Network.

Since a few days, VPN users are experience following problem in accessing Branch Office Network:-

192.168.10.x (VPN client) can't access 192.168.25.x (Branch office). However 192.168.100.x (Head office) can access 192.168.25.x (Branch Office). If Branch Office does a tracert to any ip in 192.168.10.x (VPN Client) then 192.168.10.x can access 192.168.25.x

What could be the problem and how should i troubleshoot the issue.

Thanks.

teatrodelsogno · ‎03-05-2015

Hi Muhammad,

the problems could be various.

BTW I'm thinking to split tunneling or no-nat configuration or nat configuration.

Obliviously, without configuration I / We can't provide you some other details.

Then, could you provide us some configuration from your firewall?

In the while, some test from your side.

Packet-tracer is your friend also for this situation.

Try to simulate the packets (prefer TCP simulation) on this tool and let me know.

Regards

Matteo

David Johan Castro Fernandez · ‎03-10-2015

Hi,

I see,

- do you have a L2L among the Branch office and the Head office?

- Are you using Split tunnel?

- Can you share the show tech and indicate the tunnel group name and the group policy as well?

With this we will be able to see what is going on!

Please don't forget to rate and mark as correct the helpful Post!

David Castro,

Regards,