Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
205
Views
0
Helpful
1
Replies

ASA Remote Access

GRANT3779
Spotlight
Spotlight

‎07-23-2013 02:46 AM - edited ‎02-21-2020 07:02 PM

When creating a DHCP scope for my VPN clients coming in via IPSEC I am told the subnet has not to be routable on the network.

I can connect in to my VPN but unable to access remote sites (only local to the ASA) due to them not having a route to my VPN Client subnet. To counter this I have to add static routes to all my remote sites. Why am I told this network has not to be routable? Surely the only way for my remote sites to talk with my VPN clients is by adding static routes making it routable?

Labels:
0 Helpful
1 Reply 1

Azubuike Obiora
Level 1
Level 1

‎07-23-2013 05:03 AM

Hi Grant,

What is your topology like? Can you paint a much precise picture of what you are saying please. Are you the one in control of the ASA?

Clearly it's a routing issue but we need to know how you are sending the packet along to your remote site...i mean what are the hops you are paying through to get to your remote site! Very well the ASA knows about the subnet but whats the routing btw you ASA and the next hop, like you switch svi or something.

Giving a good vision of what your network looks like we might be about so resolve your problem.

Cheers

Teddy

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents