01-19-2009 03:57 PM
Hey All,
I have a particular problem i can't seem to resolve.
I can connect to my VPN, but once connected I cannot resolve or get to any of my internal networks.
Here is part of the config that refers to anything with the VPN connection
access-list inside_nat0_outbound extended permit ip 192.168.0.0 255.255.0.0 192.168.198.0 255.255.255.0
access-list inside_nat0_outbound remark allows anything on the 192.168.x.x/24 network to talk to the secure VPN clients
access-list inside_nat0_outbound extended permit ip 192.168.0.0 255.255.0.0 10.110.198.0 255.255.255.0
access-list inside_nat0_outbound remark allows anything on the 10.x.x.x/8 network talk to Unsecure VPN clients
access-list inside_nat0_outbound extended permit ip 10.0.0.0 255.0.0.0 192.168.198.0 255.255.255.0
access-list inside_nat0_outbound remark allows anything on the 10.x.x.x/8 network talk to Secure VPN clients
access-list inside_nat0_outbound extended permit ip 10.0.0.0 255.0.0.0 10.110.198.0 255.255.255.0
access-list inside_nat0_outbound extended permit ip any 209.136.69.64 255.255.255.192
access-list GDMVPN_splitTunnelACL standard permit 192.168.187.0 255.255.255.0
access-list GDMVPN_splitTunnelACL remark Access to Louisville Subnet
access-list GDMVPN_splitTunnelACL standard permit 10.110.0.0 255.255.0.0
access-list GDMVPN_splitTunnelACL remark Access to Lexington Subnet
access-list GDMVPN_splitTunnelACL standard permit 10.120.0.0 255.255.0.0
access-list GDMVPN_splitTunnelACL remark Access to Cincinnati Subnet
access-list GDMVPN_splitTunnelACL standard permit 10.130.0.0 255.255.0.0
access-list GDMVPN_splitTunnelACL remark Access to Covington Subnet
access-list GDMVPN_splitTunnelACL standard permit 10.140.0.0 255.255.0.0
access-list GDMVPN_splitTunnelACL remark Access to Frankfort Subnet
access-list GDMVPN_splitTunnelACL standard permit 10.150.0.0 255.255.0.0
access-list GDMVPN_splitTunnelACL standard permit 192.168.118.0 255.255.255.0
access-list GDMVPN_splitTunnelACL standard permit 192.168.28.0 255.255.255.0
access-list GDMVPN_splitTunnelACL standard permit 192.168.13.0 255.255.255.0
access-list GDMVPN_splitTunnelACL standard permit 192.168.18.0 255.255.255.0
ip local pool GDMVPNPool 192.168.198.1-192.168.198.254 mask 255.255.255.0
group-policy GDMVPN internal
group-policy GDMVPN attributes
dns-server value 192.168.187.42
split-tunnel-policy tunnelspecified
split-tunnel-network-list value GDMVPN_splitTunnelACL
default-domain value greenebaum.com
split-dns value greenebaum.com gdm.com
tunnel-group GDMVPN type remote-access
tunnel-group GDMVPN general-attributes
address-pool (900RAWTWC) GDMVPNPool
address-pool GDMVPNPool
default-group-policy GDMVPN
tunnel-group GDMVPN ipsec-attributes
pre-shared-key HIDDEN
01-19-2009 04:12 PM
ok not sure, but I after I rebooted the ASA 3 times it started working...no clue why
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide