05-09-2012 08:28 AM - edited 02-21-2020 06:03 PM
We have gotten our anyconnect clients to connect to the VPN with no issues and verifying credentials with RADIUS. Remote users however cannot access internal resources through the VPN. I know I need to setup an NAT Exempt statement for my VPN Pool to the Internal Network, but I am having problems figuring that out and looking for a little guidance.
Thank you in advance.
-Nick
05-09-2012 08:31 AM
what version of your ASA that you are running?
05-09-2012 08:34 AM
Cisco Adaptive Security Appliance Software Version 8.2(5)
Device Manager Version 6.4(5)
05-09-2012 08:43 AM
Have you tried to use packet tracer and see where the traffic is dropped?
Sent from Cisco Technical Support iPad App
05-09-2012 09:02 AM
Do I have to setup a VPNACL first to allow the traffic to flow and then use that for the NAT Exemption?
05-09-2012 09:29 AM
You have to create a access list.
e.g access-list NO-NAT extended permit object-group VPN-DHCP-POOL any ( feel free to restrict access here) log
Then create no NAT rule
e.g Nat (interface) 0 access-list NO-NAT
Sent from Cisco Technical Support iPad App
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: