Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA 7.2 remote access VPN

Hi All,

I created a remote access VPN on my ASA through ASDM. The internal LAN in 192.168.14.x; the remote access pool uses 10.254.14.x; my vpn client logs in normally, but once in, i am not able to reach 192.168.14.x; any tips?

4 REPLIES
New Member

Re: ASA 7.2 remote access VPN

Hi,

it can be you have not configured access-list nonat,ex. access-list nonat perm ip 10.254.14.0 255.255.255.0 10.254.14.0 255.255.255.0

and command nat (inside) 0 access-list nonat

HtH

Zdenek

New Member

Re: ASA 7.2 remote access VPN

Sorry fot the mistake,

access-list shall be access-list nonat perm ip 192.168.14.0 255.255.255.0 10.254.14.0 255.255.255.0

Re: ASA 7.2 remote access VPN

Hi .. please check:

1.- That your routing is correct. The segment 192.168.14.x should know how to get back to 10.254.14.X. those returned packets need to reach the inside interface of the ASA.

2.- You might need to enable NAT-T whiach is not enabled by default. The command is

crypto isakmp nat-traversal 20

I hope it helps .. please rate it if it does !!!

New Member

Re: ASA 7.2 remote access VPN

Hi guys,

it turned out i needed to add the following to the inside access-list:

access-list inside_acl extended permit ip any 10.254.14.0 255.255.255.0

when applied, i could get responses from 192.168.14.x machines.

thank you for your contributions.

125
Views
0
Helpful
4
Replies