Cisco ASA5510 - VPN Problem

dtsteinb · ‎04-26-2019

I have a Cisco ASA 5510 and when someone VPN's in they can't reach one of my subnets (10.0.10.X). This subnet is tied to my AZURE servers and when a user tries to do anything that will require ADFS it fails because it can't connect. If they disconnect from VPN they are fine. I am not sure what I need to do to be able to connect to this. When I ping 10.0.10.X it times out. VPN is setup as Split tunnel.

mvsheik123 · ‎04-27-2019

Hi,

Please post sanitized configs of ASA (related to VPN) or Make sure 10.0.10.x is advertised to VPN user and included in nonat /access-list rules.

hth

MS

Dennis Mink · ‎04-28-2019

if you use a split tunnel it might be that you have no route to the azure servers from the VPN. do a print route on a VPN connected machine and see if 10.0.10.x is routable from that machine. and also if the azure servers have a route back to the IP address of the vpn client

Please remember to rate useful posts, by clicking on the stars below.

dtsteinb · ‎07-01-2019

This is been resolved. . Had to add subnet to Azure.