Need to connect Context B inside network to VPN in TMG which con

mubarak.mammadov · ‎07-30-2012

Hi All,

I have 2xASA5510 with securityPlus licence. ASA has devided to 3 context (Admin, ContextA,ContextB) which shouldn't be accessible from each others.we have 2 separate internet line ISP A and ISP B. ContextA Outside interface connected to ISP A, Context B and Admin Outside interface connected to ISP B. Context A Inside interface connected to TMG and have static NAT. Static(TMG,Outside) 1.1.1.1 10.10.10.10 netmask 255.255.255.255. We use Context B for Quests. So i have confugured Pat.

nat (Inside) 1 20.20.20.0 255.255.255.0 , global(Outside) 1 interface. Outside ip 2.2.2.2

RemoteVPN access was configured on TMG. now is my problem. I can't connect to VPN through Context B's Inside network (to address 1.1.1.1). From Internet everything fine VPN work to address 1.1.1.1

What's wrong? does ASA takes all Outside intefaces local to him or ...?

Ramraj Sivagnanam Sivajanam · ‎07-31-2012

Hi Bro

This is an expected problem. You can't configure VPN on Cisco ASA FW running on ACTIVE/ACTIVE mode.

P/S: If you think this comment is useful, please do rate them nicely :-) and select the option “This Question is Answered”

Warm regards,
Ramraj Sivagnanam Sivajanam

mubarak.mammadov · ‎07-31-2012

Hi,

I know ASA doesn't support VPN on multiple context mode.That's why VPN installed on TMG. I need to connect From Context B to TMG vpn which is connected via Context A.

Need to connect Context B inside network to VPN in TMG which connected to Context A