01-21-2020 03:51 AM
Dear all,
Please advice, what are possibilities.
AsIs situation: ASA with webvpn configured on outside interface. This is pretty standard solution which is working for many years.
ToBe situation: add possibility to connect via VPN client on inside interface. But here comes the trick. I would like to have (on this new headend) different tunnel-groups and with this also different ip-pool for clients.
Is it even possible (9.8 version)?
Kind regards,
Pavel
01-21-2020 05:37 AM
01-21-2020 06:38 AM
Hi,
Thanks for quick reply.
One more demand.
Let's say, on current webvpn I have tunnel-group 12345.
I will create new one (for inside) 54321.
But, what I need, is:
1) from outside I will see (in client) only 12345
2) from inside I will see (in client) only 54321
There will be no possibility to use tunnel-group 54321 from outside and vice versa.
I cannot find any solution, to limit tunnel-groups in that way.
Kind regards,
Pavel
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: