06-14-2010 01:52 PM - edited 02-21-2020 04:41 PM
Hi all,
I am still not proficient with the ASA as I would like to be.
I have inherited an ASA with an AnyConnect IP Pool 192.168.6.1 - .254. Now currently the address pool is on the same VLAN as the inside interface, 192.168.0.20/21. Now that whole VLAN includes the range of 192.168.6.x but with a /21.
Is it possible to edit the AnyConnect IP pool as something other than the same VLAN as the inside interface? Let's say I would like to change it to 10.110.6.0/24.
If so, since our ASA is also running OSPF, i assume I would need to add the new IP pools network to OSPF as well?
Hopefully you can understand my question.
Thanks in advance.
Solved! Go to Solution.
06-14-2010 05:49 PM
You can assign the ip pool that you want for the client.
Just ensure to also edit the nat 0 access-list associated with it, and if you are also doing any split tunneling acl. And yes, you have to manage the routing so that the pool address is sent back to the firewall.
Regards,
06-14-2010 05:49 PM
You can assign the ip pool that you want for the client.
Just ensure to also edit the nat 0 access-list associated with it, and if you are also doing any split tunneling acl. And yes, you have to manage the routing so that the pool address is sent back to the firewall.
Regards,
06-15-2010 05:40 AM
Thanks so much for the document.
I will give it a shot.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide