04-20-2009 09:47 AM - edited 03-11-2019 08:20 AM
Hi everyone. Im stumped on an ASA config. When I vpn in I cant get to a specific server and its driving me nuts.
when I vpn in I get a 172.16.1.x address. Server Im trying to get to is 10.94.8.211 to port 80.
I think the app needs to get to it by its domain name which isnt helping me i.e. http://testserver/url.
However when I vpn in I cant even ping it or http to the address. From inside the LAn, no problem. And of course from the asa CLI I can ping the server fine.
I tried a bunch of things but nothing worked for me.. Im attaching the config. Thanks for any help you might have.
Bob
Solved! Go to Solution.
04-20-2009 11:38 AM
If you have an internal dns server which can resolve it to it's internal address then add...
dhcpd dns x.x.x.x
04-20-2009 10:06 AM
Bob,
Does the server know how to reach 172.16.1.0/24 address?? If not but the server has a default layer 3 gateway - does the layer 3 gateway know the 172.16.1.0/24 subnet is via the ASA inside IP address?
04-20-2009 10:07 AM
Andrew, thank you for the reply. Let me verify...
04-20-2009 10:07 AM
Add...
isakmp nat-traversal
04-20-2009 10:24 AM
This command helped, it allows me to now ping it by address but not name. It seems like I still need to resolve the server by name.
I assume I can add dhcpd wins x.x.x.x ?
04-20-2009 11:38 AM
If you have an internal dns server which can resolve it to it's internal address then add...
dhcpd dns x.x.x.x
04-20-2009 12:42 PM
Thank you acomiskey, that worked as hoped!
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: