Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
642
Views
0
Helpful
2
Replies

different gateway

wenchengkao
Level 1
Level 1

‎06-08-2021 06:50 PM

Hi All

    Now My company use fortinet as default gateway....I have ASA 5505-x device want to enable its VPN function for user who work at home.

     for testing...I find Anyconnect VPN client could connect ASA device..but could not ping Local LAN computer...only ping request , no receive reply package. I find the reason that computer's default gateway is configured fortinet...not ASA...if I chage its gateway setting to ASA...the ping could work fine.

     but now,,,,whether I could let ASA VPN client could connect LocalLAN computer without change these internal server or workstation's default dateway ??

 

Thanks!!

 

Wencheng

Labels:
0 Helpful
2 Replies 2

Seb Rupik
VIP Alumni
VIP Alumni

‎06-09-2021 02:27 AM

Hi there,

Your anyconnect VPN config should be using an address pool. Configure your fortinet to direct traffic sourced from that address pool to the ASA, or use an IGP to share that information between the two devices. There shouldn't be any reason why you would need to change the routing tables of any other devices on the network.

 

cheers,

Seb.

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎06-09-2021 02:29 AM

I suggest to have static route add in Fortinet FW back to ASA with out any big change and test it.

 

Since most of the environment you already have Fortinet as DG, is this works for you ?

 

or am i miss understand the requirement ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents