cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
372
Views
8
Helpful
3
Replies

This should be an easy one for you guru's!

meidevelopment
Level 1
Level 1

I'm a newbie ,but here's what I have.

Set up ASA 5510 VPN ipsec(preshare) and relayed user authentication to our DC. I have acl set up for inside lan access and split tunnel for internet usage.

Here is my deal. When I connect via vpn client, I am able to access the local lan, netshares, intranet..etc(good, that's what I want)....I also have proper IP from the VPN pool created...I can even ping inside (DC ..users..etc) I just can't see the vpn client (user that is logged in remotely) from the inside at all (from dns or vpn pool generated IP)...I can't ping them or anything.

I'd like to see these guys when they are on the lan like a normal user on the lan. I'm sure you guys can throw some suggestions at me.

Basically I can't see my users when they are logged into the VPN, but they can see everything on the LAN. Their firewalls are down..etc. Need to see them for troubleshooting remotely amongst other things.

Thanks.

3 Replies 3

acomiskey
Level 10
Level 10

Try disabling the cisco vpn client firewall.

Thanks mate!

I was able to pc anywhere into the vpn client from my admin console with no problems.

Still can't ping one another, but I guess it's not that big a concern since everything else works fine.

As long as they can resolve to dns and everything, I guess I'm good.

Do you have reverse route setup for the crypto map?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: