Re: IpSec VPN Client configuration on ASA 5510 - Page 2

junshah22 · ‎08-30-2010

I want to configure Cisco ASA 5510 for cisco vpn clients using CLI,, Please refer me any suitable configuration using CLI..

--

Regards,

Junaid

junshah22 · ‎09-01-2010

Nope,,

By applying this ACL, all other applications has stopped working, Inside yours are unable to access resources in DMZ,

I want, inside users to give access to only DMZ but they should not pass outside interface

Jennifer Halim · ‎09-01-2010

For inside to DMZ access, you would also need to add the following ACL:

access-list Internet extended permit ip 192.168.10.0 255.255.255.0 192.168.1.0 255.255.255.0

junshah22 · ‎09-01-2010

And where, which interface in/out this ACL will be applied? DMZ ?

Can you please explain if we apply an ACL at outside interface out like

access-list Internet extended permit ip host 192.168.10.111 any

and apply it

access-group Internet out interface outside

by applying only this acl should allow only host 192.168.10.111 to go over the Internet and all the others should be denied by implicit deny,,

what do u say ?

Secondly, VPN connection speed is very slow, It was quite excellent while I was using on Cisco 2811 router,

junshah22 · ‎09-02-2010

The application over VPN connection is very slow, and the delay in ping is 700ms ,, what is the issue ?