Hello,
I have a strange issue when enabling SSL vpn on a second interface on ASA 5510.
The ASA gots a /30 connected on outside interface to the Internet but i can't use that ip on port 443 because another service is connected to it.
We got another subnet which is routed to the outside interface ip. This /28 subnet got its own interface on the ASA like a dmz.
Now i want to use also this extra subnet interface for SSL vpn, so i enabled it but it seems some acl is not allowing me.
I always got a deny to the DMZ interface ip , no matter what kind of permit rules i create on all acl's.
some drawing :
-----Internet------ASA IP/30 ( Outside IF )------------LAN ( Inside IF )-----
|
|
DMZ IF /28 ( SSL enabled on this IF )
|
|
Does any one know if this suppose to work ?
Kind Regards,
Peter