01-21-2020 03:51 AM
Dear all,
Please advice, what are possibilities.
AsIs situation: ASA with webvpn configured on outside interface. This is pretty standard solution which is working for many years.
ToBe situation: add possibility to connect via VPN client on inside interface. But here comes the trick. I would like to have (on this new headend) different tunnel-groups and with this also different ip-pool for clients.
Is it even possible (9.8 version)?
Kind regards,
Pavel
01-21-2020 05:37 AM
01-21-2020 06:38 AM
Hi,
Thanks for quick reply.
One more demand.
Let's say, on current webvpn I have tunnel-group 12345.
I will create new one (for inside) 54321.
But, what I need, is:
1) from outside I will see (in client) only 12345
2) from inside I will see (in client) only 54321
There will be no possibility to use tunnel-group 54321 from outside and vice versa.
I cannot find any solution, to limit tunnel-groups in that way.
Kind regards,
Pavel
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide