04-19-2020 08:45 AM
Cisco ASA 5520 is throwing this error whenever someone tries to access it from WAN to connect to the webportal to download the AnyConnect client, webpage, does work locally, this uses a secondary internet connection only for this connection, It's connected into the ISP Bridged output.
Connection arrives, then says routing failed, and I am stuck, I've had this problem before but don't know how I fixed,
This is the ACL and yes this vpn is to have total LAN access
Thanks in advanced!
Solved! Go to Solution.
04-22-2020 07:03 PM
04-19-2020 08:43 PM
04-20-2020 07:37 AM
ISP Doesn't allow for public ip to ASA so I just used the bridge mode on it, that ip is just the IP of the Outside interface, that I would DMZ(on bad ISP router) to be able to use anyconnect
My config is (pastebin link): https://pastebin.com/rbaiQq8i
This asa is only for a Any Connect VPN, nothing else
04-20-2020 07:19 PM
04-21-2020 06:18 AM - edited 04-21-2020 07:09 AM
About using the same subnet for pool and inside is beacause I use this as my mgmt vpn, via a secundary ISP, hence the fact I want to be able to reach everything on my LAN, the asa (192.168.1.50) is on a DMZ on the ISP router plugged into the bridged port.
About the debug for some reason nothing shows up, it says it is enabled but no output PS: I can access the portal from LAN but when the request comes from wan, it just says that route error on the main post
04-21-2020 09:47 AM
Hello, update, packets can go from WAN to the Outside IP and reach 443 of the ASA, but for some reason packets are droped then with this msg: routing failed to locate next hop for tcp from outside
@secretAlpaca wrote:About using the same subnet for pool and inside is beacause I use this as my mgmt vpn, via a secundary ISP, hence the fact I want to be able to reach everything on my LAN, the asa (192.168.1.50) is on a DMZ on the ISP router plugged into the bridged port.
About the debug for some reason nothing shows up, it says it is enabled but no output PS: I can access the portal from LAN but when the request comes from wan, it just says that route error on the main post
04-22-2020 07:03 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide