I have a asa 5505 setup with a single IP address, I need to do PAT for my internal web server and also need to support ssl vpn witht he anyconnect client. I can get the connection working, but I cannot ping from my vpn pool to my internal addresses, I have tried everything, any ideas??
I have this setup in lab right now with the following config:
external ip 192.168.1.10
Internal IP is 192.168.5.10
VPN pool is 192.168.30.10-20
I can ping from 192.168.5.16 to 192.168.30.10, but I cannot ping from 192.168.30.10 to 192.168.5.16
Base on the configuration, the vpn client should be able to ping the internal host.
You might want to check if there is any personal firewall on the internal host that might be blocking inbound ping from different subnet (normally that is the issue).
You can add the following command:
Then try to ping the ASA inside interface 192.168.5.10 from the vpn client. If that works just fine, then you might want to check your internal host itself, or try to see if you can ping any other 192.168.5.x hosts (pls make sure that you disable the personal firewall which normally is the culprit).
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...