cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1605
Views
0
Helpful
3
Replies

FMC RA VPN with PBR

Hello,

 

I have a couple of firewalls on FMC 1000, and two internet routers in front of the firewalls.

I have enabled anyconnect VPN and a nat was added to use anyconnect and RA VPN.

then i have configured PBR to use one internet link for some vlans and the other link for the rest of the vlans, and i have removed the static route, and it is working now.

But i have lost the VPN connection, as after deploying the flexconfig, and removing the static route, the internet traffic is passing successfully but the anyconnect VPN is unable to connect???!!!

 

 

Any idea.

THX a lot

3 Replies 3

Another note, is that the route-map is applied to the inside interface

Have you disabled NAT for the RA VPN subnet?

kapydan88
Level 4
Level 4

What do you mean "lost the vpn connection"? Users outside are unable to connect anyconnect, because there is authentication issue? Or users able to connect to anyconnect, but unable to have access to internal network?

 

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: