Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

ASA easy VPN question.

I have easy vpn remote access configured on ASA box .once the user is connected wants to access resources in DMZ and INSIDE zone .I have 3 access-list configured for outside,inside,dmz (IN) so when it picks a IP from VPN pool do i need to edit outside access-list to allow access for inside/dmz zone .

Whats the concept here how this VPN Pool IP is treated .

Pls explain .

Thanks

1 REPLY
Silver

Re: ASA easy VPN question.

Yes, you would need to add a NAT exempt statement on the inside interface to allow traffic from the inside go back to the VPN pool. Same concept applies for the DMZ interface.

Here is the closest example I could find:

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080809222.shtml

Please ask me if it is still not clear.

124
Views
0
Helpful
1
Replies