Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

How can I make VPN Clients visible via icmp from the inside interface

We want to reach all VPN Clients via the inside interface of the ASA  with icmp from the inside LAN.

We are using DAP with ACL's to reach targets on the inside LAN from the VPN Clients.

Problem:

We only can reach the VPN Clients from hosts which have been opened via  DAP ACL.

We created ACL to allow icmp on the inside interface any any

We get this errror message.

6 Nov 24 2009 06:39:33 109025 136.230.230.93 512 172.17.35.10 0 Authorization denied (acl=DAP-ip-user-206AB50D) for user '<unknown>' from 136.230.230.93/512 to 172.17.35.10/0 on interface inside using ICMP

Can anyone help?

Thanks

1 REPLY

Re: How can I make VPN Clients visible via icmp from the inside

It seems to me that your DAP is too specific, you might need to broad your scope to include those hosts that are not being able to ping those clients.

265
Views
0
Helpful
1
Replies
CreatePlease to create content