Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

how asa handle ip address conflicts with vpn's ip local pool

Hi!

I wonder how asa handle ip address conflicts with vpn's ip local pool.

I can't find anything regarding that topic?

Steve

2 REPLIES

Re: how asa handle ip address conflicts with vpn's ip local pool

The ASA should be smart enough to avoid using the same ip address at the very same moment, after the ip address has been released by any vpn client, it has the "reuse-delay" parameter to find out how long it have to wait to use it after it has been released:

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/uz.html#wp1570836

New Member

Re: how asa handle ip address conflicts with vpn's ip local pool

I haven't tested for address conflicts but know ASA installs route to ip assigned to VPN user from local pool with bitmask 32 and outgoing interface as outside (if users connect to outside). So logically would be to think more specific route to VPN user wins over network address with less bits in mask (configured say on LAN interface in ASA).

497
Views
0
Helpful
2
Replies
CreatePlease to create content