05-23-2014 09:55 AM
Howdy,
I've an ASA 5505
ASDM version: 6.4(7) - ASA version: 8.4(7)3
We have some vpn users accessing through the network via rdp and telnet services.
Right now this is working just fine, but in the moment VPN's up, internet access goes off and I can't find which policy is doing that.
We use PCF files to connect with the client but I can't see nothing relatively to this.
Is this some kind of default policy group?
Kind regards,
Solved! Go to Solution.
05-23-2014 11:17 AM
Hi ,
For your requirement configure split tunneling . whereas you can segregate VPN and internet traffic
HTH
Sandy
05-23-2014 11:24 AM
Hi,
In addition to Sandy's previous reply, if you do want to tunnel all traffic for clients connecting in through the VPN tunnel then make sure you also have "same-security-traffic permit intra-interface" enabled on the ASA so that the traffic can be hairpinned out the same interface (generally the outside interface).
Lastly, be sure that you have a an (outside,outside) NAT statement for the users so they can be NATed appropriately as well.
05-23-2014 11:17 AM
Hi ,
For your requirement configure split tunneling . whereas you can segregate VPN and internet traffic
HTH
Sandy
05-23-2014 11:24 AM
Hi,
In addition to Sandy's previous reply, if you do want to tunnel all traffic for clients connecting in through the VPN tunnel then make sure you also have "same-security-traffic permit intra-interface" enabled on the ASA so that the traffic can be hairpinned out the same interface (generally the outside interface).
Lastly, be sure that you have a an (outside,outside) NAT statement for the users so they can be NATed appropriately as well.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide