Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VPN access inside

New to ASA. I used the wizard in asdm to configure a VPN to my site. I am able to access the outside network (Web surfing) but I cannot access any of my internal addresses or VLANS.

I have made so many changes based on many suggestion in the forum, that I am afraid the configs are all messed up. I have done the VPN wizard several times creating several VPN profiles. The profile that seems to make the most sense is KWRE-1. This one when I VPN up can access the Internet. All others cannot. Mt main concern is being able to access all the internal VLANS when I VPN up.

My config is attached:

Thanks for looking.

John

3 REPLIES
New Member

Re: VPN access inside

Your nat 0 does not cover your VPN client pool:

access-list inside_nat0_outbound_1 extended permit ip any 192.168.30.192 255.255.255.192

ip local pool KW-VPN 192.168.30.10-192.168.30.254 mask 255.255.255.0

You should change your acl entry to the following

access-list inside_nat0_outbound_1 extended permit ip any 192.168.30.0 255.255.255.0

New Member

Re: VPN access inside

I see. Perfect that worked! Thanks for helping out.

John

New Member

Re: VPN access inside

no problem :)

118
Views
5
Helpful
3
Replies