Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

question on defining IP pool for remote access vpn clients

I want to setup a remote access vpn on an ASA firewall. I had a question regarding what ip pool range I should be using. Let's say my inside network is 192.168.100.x, can I use any private ip pool range for the remote users, does it matter? Or do I need to slice off a chunk of that subnet for them? clarificatioin would be appreciated. thanks

1 REPLY

Re: question on defining IP pool for remote access vpn clients

Normally I always use another spare IP range, that is not being used anywhere else.

This hepls me troubleshoot any issues - when I ask for an IP address, I can tell if it's a local or remote VPN user.

If you use a seperate IP, then you have to make sure all L3 devices know the ASA is the next hop for that IP subnet.

HTH>

116
Views
0
Helpful
1
Replies
CreatePlease to create content