cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
583
Views
0
Helpful
1
Replies

Allow VPN any connect to use site to site VPN route

Wam83CA
Level 1
Level 1

Hi everyone,

 

We have configure a VPN site to site between or Cisco FPR-2120 in ASA to our Azure tenant.

All good in our LAN, we can communicate with our server but we have a problem to allow Anyconnect client to communicate with the VPN site to SIte to Azure...

 

I have attach our running config on this post. Do you have an idea about a mistake?

We work on it from the last two day and still doesn't work...

 

We need help :)

 

Thank you

1 Reply 1

Hi,

Your crypto map ACL defining the interesting traffic to Azure uses the source object "Lan_Network" this includes the network 172.18.0.0, but this does not include the SSL-VPN Pool network which is 192.168.102.0/24.

 

You would need to ensure that the SSL-VPN network is defined in the crypto map ACL "outside_cryptomap_2" in order to access Azure over the Site-to-Site VPN. You would also have to amend the VPN configuration on Azure aswell.

 

HTH

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: