Solved: Allow Anyconnect VPN clients to access AWS hosted Intranet site

Jaygugaliga · ‎05-01-2019

Hi,

We have our company Intranet site hosted on AWS. We currently restrict access to the Intranet site from our main office (Loc1) and another hosted location (Loc2). This restriction is by IP address of these 2 locations, this Intranet site is not publicly accessible.

Our Cisco AnyConnect clients (ssl vpn) connect to Loc2 to access resources on a server at Loc2 (we have a Cisco ASA 5510 running ASA v8.4. This server at Loc2 can access the company Intranet page.

Right now, the AnyConnect clients cannot access this company Intranet page.

Anyconnect clients get a virtual IP that is on the same subnet as this server at Loc2.

I guess we need a static route but I'm not sure.

Cisco novice here, but hopefully the experts here can help.

Ready to provide any info needed.

Much Appreciated.

balaji.bandi · ‎05-01-2019

Do you have ACL to access internal resource.

give us more configuraiton information or high level network topo, what is your VPN ip address range and what is Server IP which try to access and denied.

what error you see on FW ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

balaji.bandi · ‎05-01-2019

Do you have ACL to access internal resource.

give us more configuraiton information or high level network topo, what is your VPN ip address range and what is Server IP which try to access and denied.

what error you see on FW ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Jaygugaliga · ‎05-14-2019

Resolved by creating a site-to-site tunnel.

Thanks