05-09-2012 08:28 AM - edited 02-21-2020 06:03 PM
We have gotten our anyconnect clients to connect to the VPN with no issues and verifying credentials with RADIUS. Remote users however cannot access internal resources through the VPN. I know I need to setup an NAT Exempt statement for my VPN Pool to the Internal Network, but I am having problems figuring that out and looking for a little guidance.
Thank you in advance.
-Nick
05-09-2012 08:31 AM
what version of your ASA that you are running?
05-09-2012 08:34 AM
Cisco Adaptive Security Appliance Software Version 8.2(5)
Device Manager Version 6.4(5)
05-09-2012 08:43 AM
Have you tried to use packet tracer and see where the traffic is dropped?
Sent from Cisco Technical Support iPad App
05-09-2012 09:02 AM
Do I have to setup a VPNACL first to allow the traffic to flow and then use that for the NAT Exemption?
05-09-2012 09:29 AM
You have to create a access list.
e.g access-list NO-NAT extended permit object-group VPN-DHCP-POOL any ( feel free to restrict access here) log
Then create no NAT rule
e.g Nat (interface) 0 access-list NO-NAT
Sent from Cisco Technical Support iPad App
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide