Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
590
Views
0
Helpful
1
Replies

ASA outside(WAN) interface not a routable IP, how do setup anyconnect endp?

lostngone
Level 1
Level 1

‎01-07-2021 05:57 PM

I am using a ASA 5500-X in routed mode currently without NAT. I have routable IP space on the inside that I am adverting/routing to the outside. There has be a request to setup Anyconnect VPN for remote access. Normally you just set the "outside" interface as the endpoint however in this case that interface is a /30 address private RFC-1918(10.0.0.0/8) that is between the ASA and my provider.

I do have a free routable subnet that I was planning on using for this. Can someone point me in the right direction on how to go about doing this?

 

Thank You

Labels:
0 Helpful
1 Reply 1

Mohammed al Baqari
Level 11
Level 11

‎01-07-2021 06:28 PM

Hi,

The easiest option is to use static pat to nat the outside of ASA on port
443 to routable IP on port 443. This should be done on ASA itself and will
get your anyconnect reachable.

***** please remember to rate useful posts
0 Helpful
Customers Also Viewed These Support Documents