Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

cannot remote VPN on ASA 5510!

Dear All,

Now i need all of you to help me about remote VPN client.

i have only router for connect to internet and have ASA 5510 for firewall and VPN client.

now i have issue for connect VPN from outside to ASA 5510.Could you advice me which step for allow connect from outside and passthrouth one router and router forward to ASA 5510?

this is my configureration

access-list 101 extended permit ip

access-list vpnclient extended permit ip 255.0

ip local pool vpn-client-pool mask

nat (inside) 0 access-list 101

crypto ipsec transform-set vpn esp-3des esp-sha-hmac

crypto dynamic-map vpn-client 300 set transform-set vpn

crypto map Outside_map 300 ipsec-isakmp dynamic vpn-client

crypto map Outside_map interface outside

crypto isakmp identity address

crypto isakmp enable outside

crypto isakmp policy 65535

authentication pre-share

encryption 3des

hash sha

group 2

lifetime 86400

group-policy VPN-Client internal

group-policy VPN-Client attributes

dns-server value

vpn-tunnel-protocol IPSec

ipsec-udp enable

ipsec-udp-port 10000

split-tunnel-policy tunnelspecified

split-tunnel-network-list value vpnclient

default-domain value

tunnel-group vpn-client type remote-access

tunnel-group vpn-client general-attributes

address-pool vpn-client-pool

default-group-policy VPN-Client

tunnel-group vpn-client ipsec-attributes

pre-shared-key *

note: if i use connect direct (by pass ) router is working with vpn clinet but when i connect it (router) i cannot connect VPN . i try to allow any any on router but still has problem.

Please help to advice !

Best Regards,


  • VPN
This widget could not be displayed.