10-11-2015 05:22 PM - edited 03-05-2019 02:30 AM
Hello, I am having this issue with ASA 5505 Ver 8.2.5
I can connect to asa using vpn 3.1.xx get an ip address and shows as connected
But I can not access any resources on the remote site.
I know that I need split tunnel and is already in place.
I have no nat created between internal and vpn pool
Here is my info
Internal IP 192.168.80.0/23 VPN Pool IP 192.168.99.0/24
I have quite a few L2L vpn tunnels and they all work fine without any problems
I have attached my Running Config file and some of the screen shot from my machine when I am connected. I am completely lost. Can someone help me please?
11-13-2017 03:34 PM
Can you post the webvpn configuration please (no running config). Please send the output of below:
- show running-config | grep webvpn
- show run nat (the nat statement for webvpn)
- show run access-list (the access-list for webvpn)
- vpn pool
Thank you
11-14-2017 01:39 AM
Hello,
at first glance, your no_nat access list is missing a few lines (VPN pool to internal networks). Can you add the below and check if that makes a difference ?
access-list no_nat extended permit ip 192.168.99.0 255.255.255.0 192.168.80.0 255.255.254.0
access-list no_nat extended permit ip 192.168.99.0 255.255.255.0 192.168.254.0 255.255.255.0
access-list no_nat extended permit ip 192.168.254.0 255.255.255.0 192.168.99.0 255.255.255.0
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: