04-21-2012 12:27 AM - edited 03-11-2019 03:56 PM
Hi,
We have already implemented Cisco client VPN service on Cisco ASA. My Cisco VPN ip pool is configured 174.26.4.0/22 & My corporate network pool is 172.26.4.0/22. which is working perfectly.
My concern is VPN pool 174.26.4.0/22 is comes under public range so i want to change this pool into private range (172.30.100.0/24)
so i changed below configuration.
no access-list nonat extended permit ip 172.26.4.0 255.255.252.0 174.26.4.0 255.255.252.0
no ip local pool testpool 174.26.4.0-174.26.4.253
access-list nonat extended permit ip 172.26.4.0 255.255.252.0 172.30.100.0 255.255.255.0
ip local pool testpool 172.30.100.1-172.30.100.254
After changing, i am able to connect vpn & vpn machine got ip address 172.30.100.1.
during VPN connection, vpn machine (172.30.100.1) is pinging from corporate network & even take the remote also but from VPN machine (172.30.100.1) I am not able to ping corporate network.
i am not able to understand where is my mistake?
Please help us
Regards
vinod Gupta
9810966625
04-21-2012 02:33 AM
Paste your full configuration
04-22-2012 02:43 PM
Config will definitely help but did you check if the VPN client getting corp network routes? Check the splittunnel settings.
thx
MS
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide