Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

AnyConnect 3.0 with ASA5510 no Internal Access

We have gotten our anyconnect clients to connect to the VPN with no issues and verifying credentials with RADIUS. Remote users however cannot access internal resources through the VPN. I know I need to setup an NAT Exempt statement for my VPN Pool to the Internal Network, but I am having problems figuring that out and looking for a little guidance.

Thank you in advance.

-Nick

5 REPLIES

AnyConnect 3.0 with ASA5510 no Internal Access

what version of your ASA that you are running?

New Member

AnyConnect 3.0 with ASA5510 no Internal Access

Cisco Adaptive Security Appliance Software Version 8.2(5)

Device Manager Version 6.4(5)

New Member

Re: AnyConnect 3.0 with ASA5510 no Internal Access

Have you tried to use packet tracer and see where the traffic is dropped?

Sent from Cisco Technical Support iPad App

New Member

AnyConnect 3.0 with ASA5510 no Internal Access

Do I have to setup a VPNACL first to allow the traffic to flow and then use that for the NAT Exemption?

New Member

Re: AnyConnect 3.0 with ASA5510 no Internal Access

You have to create a access list.

e.g access-list NO-NAT extended permit object-group VPN-DHCP-POOL any ( feel free to restrict access here) log

Then create no NAT rule

e.g Nat (interface) 0 access-list NO-NAT

Sent from Cisco Technical Support iPad App

439
Views
0
Helpful
5
Replies
CreatePlease to create content