Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Intervlan routing not working over VPN

I have a 4506 doing my intervlan routing. I have several vlans. That 4506 is connected to a ASA5520. I have a vendor that is trying to VPN into the network. He can get connect via VPN, the ASA gives him an IP from the address pool. He just can't hit his server which is on a different vlan. Further troubleshooting shows that i can't hit any other vlans except the vlan i have the pool assigned to. Any suggestions?

3 REPLIES

Re: Intervlan routing not working over VPN

can you post the config or double check wether you have nat exempt acls permiting vpn pool subnet to local subnets? I assume asa can reach internal subnets in 4500.

example assume two of you inside subnets in 4500 switch are 10.30.30.0/24 10.40.40.0/24 and your vpn pool network is 192.168.1.0/24

in example acl should be as this.

access-list inside_nat0_outbound extended permit ip 10.30.30.0 255.255.255.0 192.168.1.0 255.255.255.0

access-list inside_nat0_outbound extended permit ip 10.40.40.0 255.255.255.0 192.168.1.0 255.255.255.0

nat(inside) 0 access-list inside_nat0_outbound

Regards

Jorge

New Member

Re: Intervlan routing not working over VPN

Excellent. No need to post config. I got it. Thanks for your help.

Re: Intervlan routing not working over VPN

Michael, post the update whether you still have problem.

Bst Rgds

Jorge

122
Views
5
Helpful
3
Replies
CreatePlease login to create content