Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

AnyConnect VPN to multiple inside VLAN?

Hello,

We have an ASA 5020 8.4 with:

outside IF: public IP

inside IF 1: Management LAN 172.16.0.0/24  (Sec Level 99)

inside IF 2: VLAN2 10.0.50.0/24   (Sec Level 50)

inside IF 3: VLAN3 10.0.90.0/24   (Sec Level 50)

etc.

My AnyConnect VPN Client configuration:

VPN Access IF: outside IF

Bypass IF ACL.

Traffic between IF with same security level enabled.

VPN IP pool 172.17.0.80...99/24 (used only for the VPN clients)

NAT rules: IF1, IF2, IF3 to outside IF (VPN IP pool) no nat.

My workstation can connect to the ASA with the Anyconnect Client and I can access hosts on the inside IF 1: Management LAN 172.16.0.0/24

BUT I can't access any of the other inside IF/VLAN.

What is wrong with my configuration?

1 REPLY
New Member

AnyConnect VPN to multiple inside VLAN?

I think I've found the problem.

I had made NAT Rules but they were in the wrong order! I had the NAT rule which is needed for the Internet access before the NAT rules for the internal VPN traffic.

103
Views
0
Helpful
1
Replies
CreatePlease to create content