Help with remote access object-groups/split-tunneling commands
I'm tasked with designing a remote access solution through an ASA v8.0 and I started by creating a text file with configuration details like group-policy, tunnel-groups, crypto (the text file looks as if you typed show run)â¦ I'm tasked with only the remote access portion of solution, not the full ACL, NAT statements.
Can someone please proof-read what I have so far? Attached is a basic net diagram that will be the completed project.
I have questions on the following:
1. What should the object-groups be if this firewall configured for remote-access?
2. How do I configure the split-tunneling portion?
3. Do I need more or less group-policies and tunnel-groups?
a. There is very little difference between the uservpn and engvpn groups
If anyone can help, I will be most appreciative. Keep in mind I'm still working on which commands to use so some of the config commands are missing.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...