Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Astaro SSL vpn access users to reach another site via a Astaro v8.309 & ASA v7.2(4) Site-to-Site Tunnel

Hello Team,

I have Astaro & ASA IP-sec connection & it's working fine.

Now i want to connect Astaro SSL user with different IP pool range to connect to the ASA Lan via Astaro - ASA Ipsec tunnel.

Below is the change i have done so far , but it's not working.

I'm sure that there is no further need to change @ Astaro but i'm new to ASA , so please suggest.

Is such setup is supported by the ASA ??

Please find the attaced diagram of the setup.

-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------

Site 1 = Astaro LAN Pool => 192.168.21.0/24

Site 2 = Astaro SSL Pool => 10.120.2.0/24

ASA Lan Pool => 192.168.1.0/24

@ Astaro => 1) Added the ASA Lan Pool in the local pool of the astaro SSL user.

                    2) Added the Astaro SSL pool in the IPSec Local pool with the Astaro Lan Pool.

                    3) And click on the automatic firewall rule.

@ ASA => 1) Add the Astaro SSL pool with the remote lan pool with the Astaro Lan pool

                 2) Add the no nat(exempt) rule Interface=> Inside for source=> ASA Lan pool To destination => Astaro SSL pool

--

there is no place like 127.0.0.1       

there is no place like 127.0.0.1
226
Views
0
Helpful
0
Replies
CreatePlease to create content