Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

VPN internal Firewall

Remote access VPN is configured on an ASA. The external interface of ASA is Private IP. Hence static NAT is configured on the Router that is connected to the Internet to do translation for VPN traffic.

Things are working fine but when more than one user connect from same place (Source is same Public IP) only one user can ping the servers. Other has VPN established but cannot ping any device.

When different users connect from different places there is not problem.

2 ACCEPTED SOLUTIONS

Accepted Solutions

Re: VPN internal Firewall

Hi Zakir

Make sure the following command exists in your configuration

cypto isakmp nat-traversal 20

Regards

Community Member

Re: VPN internal Firewall

Configure "crypto isakmp nat-traversal 20" on the ASA

HTH

Kev

3 REPLIES

Re: VPN internal Firewall

Hi Zakir

Make sure the following command exists in your configuration

cypto isakmp nat-traversal 20

Regards

Community Member

Re: VPN internal Firewall

Hello,

The router is 2821 with version 12.4(1r). The command

crypto isakmp nat-traversal 20 is not available.

Community Member

Re: VPN internal Firewall

Configure "crypto isakmp nat-traversal 20" on the ASA

HTH

Kev

122
Views
0
Helpful
3
Replies
CreatePlease to create content