Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

how can I dedicate a single ip to a vpn client on asa 5510

Hi All

my question is......

How can I dedicate  a single VPN NAT ip to a single client VPN ? I dont want this ip used by another vpn client....

I got a ASA 5510 with a

dhcp pool.

cisco vpn client 5.0

thanks

1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Silver

how can I dedicate a single ip to a vpn client on asa 5510

You're welcome. Please rate responses and mark your question answered to raise the value of the forum.

9 REPLIES
Hall of Fame Super Silver

how can I dedicate a single ip to a vpn client on asa 5510

Create a group policy for that user alone which has assigned it's own unique dhcp pool range of one address only.

how can I dedicate a single ip to a vpn client on asa 5510

thanks so much

you mean on the ASA correct ?

Hall of Fame Super Silver

Re: how can I dedicate a single ip to a vpn client on asa 5510

Yes, on the ASA.

Your details may vary but it would look something like the lines below ( is whatever name you choose for this profile and is the username):

!substitute desired address in next line

ip local pool 192.168.1.100-192.168.1.100 mask 255.255.255.255

group-policy internal

group-policy attributes

vpn-filter value

vpn-tunnel-protocol ssl-client

address-pools value

webvpn

  anyconnect keep-installer installed

  anyconnect ask none default anyconnect

tunnel-group type remote-access

tunnel-group general-attributes

authentication-server-group rsa

default-group-policy

tunnel-group webvpn-attributes

group-alias enable

username attributes

vpn-group-policy

vpn-filter value

vpn-tunnel-protocol ssl-client

webvpn

  anyconnect ask none default anyconnect

how can I dedicate a single ip to a vpn client on asa 5510

thanks so much,  I will take a shoot on it, also iforgot to mention im using the ASA ASDM...

how can I dedicate a single ip to a vpn client on asa 5510

Hi,

In addition to Marvin's suggestion, if you have atleast one IP in the subnet that is not part of the pool , you can use this...

username user1 attributes

vpn-framed-ip-address 192.168.1.250 255.255.255.0

!

Thx

MS

how can I dedicate a single ip to a vpn client on asa 5510

thanks mvsheik123

this command will exclude the single ip address from the pool?...some kind of reserve this IP?

thanks

how can I dedicate a single ip to a vpn client on asa 5510

thanks guys you are awasome......it works

have agreat weekend

Carlos

Hall of Fame Super Silver

how can I dedicate a single ip to a vpn client on asa 5510

You're welcome. Please rate responses and mark your question answered to raise the value of the forum.

how can I dedicate a single ip to a vpn client on asa 5510

thanks

540
Views
0
Helpful
9
Replies
CreatePlease login to create content