cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
277
Views
0
Helpful
0
Replies

Non Anyconnect VPN Client

keithcclark71
Level 3
Level 3

I am looking at an ASA 5505 ASA Ver 8.2 and anyconnect client is not being used. They have some 3rd party client that connects to port 500. However I am at a loss here as to how this was setup. I searched the cofig for VPNGP and output of command is also below but I can't ssem to figure out where in the ASA this previous person configured this to support this 3rd party VPN. In the remote vpn connection profile the VPNGP profile exists but is not selected and I dont see any such tunnel group called VPNGP as shown in users session output. Only Tunnels I know of whould be in site to site VPN and this is a remote user session using 3rd party VPN somehow. I see within the ASA there is section for IPSEC IKE1 connection profiles where the  below  VPNGP group policy is available for the outside , inside and a backup interface on this particular ASA so I assume this is where the support for non anyconnect client VPN was setup. I dont however see anything related to port 500 or how the VPN comes in from the outside interface of the ASA.

 

ASA 5505 ASA ver 8.2

 

VPN Session Info

Username : vpnuser Index : 486
Assigned IP : VPNIP Here Public IP : Users Public IP
Protocol : IKE IPsecOverNatT
License : IPsec
Encryption : 3DES AES128 Hashing : SHA1
Bytes Tx : 715952431 Bytes Rx : 26697644
Group Policy : VPNGP Tunnel Group : VPNGP
Login Time : 00:42:11 EDT Fri Jun 10 2022
Duration : 1h:08m:31s
Inactivity : 0h:00m:00s
NAC Result : Unknown
VLAN Mapping : N/A

 

Show RUN 

Result of the command: "sh run | i VPNGP"

access-list VPNGP_splitTunnelAcl standard permit 192.168.1.0 255.255.255.0
access-list VPNGP_splitTunnelAcl standard permit 192.168.2.0 255.255.255.0
access-list VPNGP_splitTunnelAcl standard permit 192.168.3.0 255.255.255.0
group-policy VPNGP internal
group-policy VPNGP attributes
split-tunnel-network-list value VPNGP_splitTunnelAcl
default-domain value VPNGP
vpn-group-policy VPNGP
tunnel-group VPNGP type remote-access
tunnel-group VPNGP general-attributes
default-group-policy VPNGP
tunnel-group VPNGP ipsec-attributes

0 Replies 0
Review Cisco Networking for a $25 gift card