Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
pxh
Community Member

VPN problem on ASA

Really appreciate for any thought about this problem?

After vpn in, a remote PC is assigned ip address 10.1.8.13 255.255.254.0 from the ASA. I did ipconfig on the pc and it shows default gateway is 10.1.8.1 The remote pc can access all internal subnets and able to ping the internal interface of the firewall 10.1.2.10 and both ip addresses of the vlan interface of the 6509 where the inside interface of the ASA plug to. that vlan interface has ip addresses 10.1.2.3 and 10.1.8.1 which is a secondary address

The problem is all internal devices including the ASA can NOT ping 10.1.8.13. The servers push some updates to the remote PC, but that does not work.

I turn off the firewall on the PC.

2 REPLIES
Gold

Re: VPN problem on ASA

this sounds like a nat 0 issue.

access-list nat0_acl permit ip any 10.1.8.0 255.255.254.0

nat (inside) 0 access-list nat0_acl

do you have anything like that in your config?

is nat-control enabled (sh run nat-control)

Community Member

Re: VPN problem on ASA

Are you routing the network correctly on the 6509?

106
Views
0
Helpful
2
Replies
CreatePlease to create content