Firepower 1010 cannot RDP - Page 2

jjevans1 · ‎11-26-2022

Hello All,

I have setup VPN according to these instructions:

https://www.petenetlive.com/KB/Article/0001682

I have the default rule (Inside Zone Any Any to Outside Zone Any Any = Trust)

I have a just in case rule (Inside Zone Any Any to Inside Zone Any Any = Trust)

When I VPN in successfully and try to RDP to any PC’s on the local LAN (192.168.1.0/24) I cannot connect nor can I ping any of the internal IP addresses.

My VPN address is 192.168.1.250/24

What can I be missing?

Thank you for any insight,

JJ

MHM Cisco World · ‎11-27-2022

totally right since your packet reach phase 8 then there is no issue except
in packet-tracer you must not use anyconnect active user IP
so as @Rob Ingram mention change IP or use real anyconnect

jjevans1 · ‎11-27-2022

Attached is new packet tracer from 192.168.2.22. I have a test machine that is connected to the VPN. It’s IP address is: 192.168.2.2/24 and it not able to ping 192.168.1.5 (PC)

Rob Ingram · ‎11-27-2022

@jjevans1 packet-tracer confirms it should now work, is there a local firewall on the PC blocking the ping?

jjevans1 · ‎11-27-2022

I rebooted the inside PC. There was some network connection conflict with all the changes I made in the FDM on that PC. I am now able to ping and RDP to is successfully. Your expertise really makes this community a great place. Thank you for all your insight. I have really learned a lot with your assistance. Thank you so much!