Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA 5505 VPN NAT

Hi all,

I am working with an ASA 5505 and am trying to get remote VPN working. I used the wizard to set up the connection and I can connect to the appliance. When I do connect, I cannot do anything, like surf, nslookup, access the ASDM, etc. I think NAT is where I need to be looking and I have tried NAT exempt rules with no luck. Can anyone help with this?

Thanks

1 ACCEPTED SOLUTION

Accepted Solutions

Re: ASA 5505 VPN NAT

You need this ( if doing full tunnel ra vpn)

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00805734ae.shtml

example

same-security-traffic permit intra-interface

global (outside) 1 interface

nat (outside) 1

as for accessing ASA through RA tunnel or any ipsec tunnel you need couple of statements:

management-access inside ( provided your inside interface nameif is inside)

http inside

telnet inside

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/m.html#wp1987122

2 REPLIES

Re: ASA 5505 VPN NAT

You need this ( if doing full tunnel ra vpn)

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00805734ae.shtml

example

same-security-traffic permit intra-interface

global (outside) 1 interface

nat (outside) 1

as for accessing ASA through RA tunnel or any ipsec tunnel you need couple of statements:

management-access inside ( provided your inside interface nameif is inside)

http inside

telnet inside

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/m.html#wp1987122

New Member

Re: ASA 5505 VPN NAT

Thanks so much!

339
Views
0
Helpful
2
Replies