Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ASA 5505 VPN works great but clients unable to access internet through tunnel

We have an ASA 5505 running ASA 8.2.1, and using IPSec clients to Remote access into the main office.  The remote access is working great, with full access to the network resources at the main office, and the one thing I can't get to work is internet access through the tunnel.  I do not want to use split tunnelling.  I am using ASDM 6.2.1 for configuration.  Any assistance is appreciated.  I am probably missing something simple, and have looked at it so much, I am probably looking right past the mistake.  Thanks in advance for your time and assistance!    Jim

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

Re: ASA 5505 VPN works great but clients unable to access inter

add a nat statement for your client segment on the outside interface

nat (outside) access-list

then allow traffic to be routed back out the same interface it came in on

same-security-traffic permit intra-interface

*

*

*more info can be found here:

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807e0aca.shtml*

On Wed, Jan 27, 2010 at 11:12 PM, jimcanova <

2 REPLIES
New Member

Re: ASA 5505 VPN works great but clients unable to access inter

add a nat statement for your client segment on the outside interface

nat (outside) access-list

then allow traffic to be routed back out the same interface it came in on

same-security-traffic permit intra-interface

*

*

*more info can be found here:

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807e0aca.shtml*

On Wed, Jan 27, 2010 at 11:12 PM, jimcanova <

New Member

Re: ASA 5505 VPN works great but clients unable to access inter

HI,

Just add the commands to Uturn the traffic from the outside inerface,

nat (outside) 1 subnet mask

global (outside) 1 interface

All the VPN client users would take ASAs public IP to go to the internet.Check Whatismyip.com

Regards,

Pradhuman

598
Views
0
Helpful
2
Replies