Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
662
Views
0
Helpful
5
Replies

AnyConnect 3.0 with ASA5510 no Internal Access

nshoe18
Level 1
Level 1

‎05-09-2012 08:28 AM - edited ‎02-21-2020 06:03 PM

We have gotten our anyconnect clients to connect to the VPN with no issues and verifying credentials with RADIUS. Remote users however cannot access internal resources through the VPN. I know I need to setup an NAT Exempt statement for my VPN Pool to the Internal Network, but I am having problems figuring that out and looking for a little guidance.

Thank you in advance.

-Nick

Labels:
0 Helpful
5 Replies 5

rizwanr74
Level 7
Level 7

‎05-09-2012 08:31 AM

what version of your ASA that you are running?

0 Helpful

nshoe18
Level 1
Level 1
In response to rizwanr74

‎05-09-2012 08:34 AM

Cisco Adaptive Security Appliance Software Version 8.2(5)

Device Manager Version 6.4(5)

0 Helpful

jose.vieira525
Level 1
Level 1

‎05-09-2012 08:43 AM

Have you tried to use packet tracer and see where the traffic is dropped?

Sent from Cisco Technical Support iPad App

0 Helpful

nshoe18
Level 1
Level 1
In response to jose.vieira525

‎05-09-2012 09:02 AM

Do I have to setup a VPNACL first to allow the traffic to flow and then use that for the NAT Exemption?

0 Helpful

jose.vieira525
Level 1
Level 1
In response to nshoe18

‎05-09-2012 09:29 AM

You have to create a access list.

e.g access-list NO-NAT extended permit object-group VPN-DHCP-POOL any ( feel free to restrict access here) log

Then create no NAT rule

e.g Nat (interface) 0 access-list NO-NAT

Sent from Cisco Technical Support iPad App

0 Helpful
Customers Also Viewed These Support Documents