Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ASA Remote ACCESS VPN ISSUE

Hi,

I am able to connect to my cisco ASA 5020 using cisco vpn client v 4.8x. But no traffic is passing through. Below is the configuration. Please help ..

-----------------------------------

access-list 100 extended permit ip 192.168.175.0 255.255.255.0 20.20.20.0 255.255.255.0

access-list 100 extended permit ip 10.254.64.0 255.255.255.0 20.20.20.0 255.255.255.0

access-list nonat extended permit ip 192.168.175.0 255.255.255.0 20.20.20.0 255.255.255.0

access-list nonat extended permit ip 10.254.64.0 255.255.255.0 20.20.20.0 255.255.255.0

ip local pool dhcp 20.20.20.1-20.20.20.100 mask 255.255.255.0

nat (inside) 0 access-list nonat

group-policy group-1 internal

group-policy group-1 attributes

banner value Welcome to ABC

dns-server value 192.168.175.3

vpn-tunnel-protocol IPSec

password-storage enable

webvpn

group-policy users internal

username xxxx password xxxx

crypto dynamic-map crypto-isakmp 1 set transform-set esp-3des

crypto map ohs 7 ipsec-isakmp dynamic crypto-isakmp

crypto map ohs interface outside

isakmp policy 18 authentication pre-share

isakmp policy 18 encryption 3des

isakmp policy 18 hash md5

isakmp policy 18 group 2

isakmp policy 18 lifetime 86400

tunnel-group tunnel-group type ipsec-ra

tunnel-group tunnel-group general-attributes

address-pool dhcp

default-group-policy group-1

tunnel-group tunnel-group ipsec-attributes

pre-shared-key *

1 REPLY
Gold

Re: ASA Remote ACCESS VPN ISSUE

apply the commands below:

isakmp identity address

isakmp nat-traversal 20

isakmp enable outside

further, the transform set seems missing. i guess it was deleted when uploaded to the forum.

102
Views
0
Helpful
1
Replies
CreatePlease to create content