Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I am trying to pass traffic between two internal interfaces but am unable to. Been searching quite a bit and have tried several things to no avail. I feel like there is a simple solution here I am just not seeing. Here is the relevant portion of my ...
I will be setting up a VPN with a client soon. They are shipping 2 Cisco 861's that are planning to go behind our ASA 5505. They are set up to be NATed.I am trying to understand what the best way to do this would be as I seem to keep running into l...
We have 2 IP blocks from my ISP. We have been using just one a /30 block with one IP address used on the outside interface of the device. The new block is a /29 range and I would need to use just two of those IP addresses. Here is the situation I ...
We have a Cisco ASA 5505 that has two Site-to-Site VPN connections. When users connect through the AnyConnect client, they are unable to access these networks. I have done some searching and tried several things with no avail. VPN Network: 192.168....
I am testing by trying ping/ssh between subnets. They are both linux machines with firewalls off. The nat commands are in there for testing. I could try removing them and trying no nat-control, howeve r will this turn off all NAT in general? Becau...
Jouni,Thank you for the reply. It was very informative and helpful.As to your questions:1.Cisco Adaptive Security Appliance Software Version 8.2(1) Device Manager Version 6.2(1)2. Yes Base license with unlimited users. (No Security Plus)3. We origin...
I agree with you 100%. It's how we set up VPN to other companies.However this one is very firm in the fact that we must use their hardware, 2 for redundancy I guess.I am just thinking of NATing the public IP to a private IP for them.Just have to bru...
I would rather terminate the VPN at the ASA, but the company wants us to use their devices behind our firewall, not quite sure why.I think I'll end up going the NATing route. Will do some testing next week before the devices get here and post an upd...
Would it matter that the gateway for the IPs which i will assign to the 861's is different from the public IP on the outside interface?eg. The IP on the outside interface of the ASA is 200.100.50.25/30 (GW: 200.100.50.25), the other IP block is 200.1...
