cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
716
Views
0
Helpful
1
Replies

Configuración de VPN para acceder a red INSIDE

Paola
Level 1
Level 1

Buenos dias,

Tengo un cisco ASA 5520 con las siguientes interfaces configuradas:

INSIDE: 192.168.100.1

OUTSIDE: 181.49.33.66

WAN: 172.30.1.36

Ademas, tengo una VPN configurada que me asigna una direccion IP de un Pool de la interfaz INSIDE (192.168.100.10 - 192.168.100.50). El problema esta en que al conectarme por la VPN y colocandome ya IP en la red de la INSIDE no me deja acceder a ningun equipo de esta red, no se que configuración adicional debo realizar, he mirado tutoriales, he probado configuraciones y nada me ha funcionado. Las IP que pasan por la WAN si me las reconoce y puedo realizar ping sin problema, pero no asi con los equipos en la red INSIDE.

En mi red INSIDE tengo 4 VLANS, en una de ellas un servidor con la IP 192.168.101.100, que es al equipo que debo acceder de forma remota por la VPN, sin embargo, no ha sido posible.

Les agradezco su ayuda en lo posible, gracias!!

1 Reply 1

David Hild
Level 11
Level 11

Here is a general translation:

Good morning, I have a Cisco ASA 5520 with the following interfaces configured: INSIDE: 192.168.100.1 OUTSIDE: 181.49.33.66 WAN: 172.30.1.36 Also, I have a VPN configured that assigns me an IP address of a Pool of the INSIDE interface (192.168.100.10 - 192.168.100.50). The problem is that when connecting to the VPN and placing IP in the INSIDE network does not allow me to access any of this network, I do not know what additional configuration I must do, I have watched tutorials, I have tried configurations and nothing has worked. The IPs that pass through the WAN if they recognize me and I can ping without problems, but not with the computers in the INSIDE network. In my INSIDE network I have 4 VLANS, in one of them a server with IP 192.168.101.100, which is the equipment that I must access remotely through the VPN, however, it has not been possible. I thank you for your help as much as possible, thanks!

I suggest someone move this post to the security community.