Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Access to External Network while connected to VPN

I have a 5505 that I've successfully setup an IPSEC connection up to. It is using NT authentication against Active Directory to authenticate. After I connect, I can access everything on the remote (internal) network. I can not access anything on the internet.

Anything behind the ASA can get to the internet, it's the vpn clients that can't get back out.

The syslog messages show the vpn clients buiding up and tearing down ICMP connections if they are trying to ping externally, but they get no response.

I know it's most likely an ACL or NAT statement that I'm missing, any ideas?

config attacched

1 ACCEPTED SOLUTION

Accepted Solutions
Green

Re: Access to External Network while connected to VPN

You have 2 options.

Split tunneling, unencrypted access to internet.

Public internet on a stick, internet traffic is tunneled to outside of ASA and back out.

same-security-traffic permit intra-interface

global (outside) 1 interface

nat (outside) 1

2 REPLIES
Green

Re: Access to External Network while connected to VPN

You have 2 options.

Split tunneling, unencrypted access to internet.

Public internet on a stick, internet traffic is tunneled to outside of ASA and back out.

same-security-traffic permit intra-interface

global (outside) 1 interface

nat (outside) 1

New Member

Re: Access to External Network while connected to VPN

acomisky,

Thanks a lot for your help. I knew that split-tunneling would allow it to work but I was trying to avoid that (I should of added that that in the original post). Thanks again for the second method, as it is exactly what I was looking for.

Tyler

150
Views
5
Helpful
2
Replies