Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
980
Views
0
Helpful
2
Replies

ASA VPN cannot ping local ip pool

Go to solution
keithannette
Level 1
Level 1

‎11-23-2010 01:16 PM

Hi,

We have an ASA 5510 device which has be deployed for some time. Everything works great except local VPN clients cannot ping local VPN clients which get their ip address from the local pool. They can ping anywhere on the local corporate network but not each other. I'm sure there is a logical explantion for this due to an ACL but any advice appreciated....

Thanks in advance

Keith

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Federico Coto Fajardo
VIP Alumni
VIP Alumni

‎11-23-2010 01:37 PM

Hi Keith,

I think that in order to allow a VPN client to reach another VPN client, the ASA should u-turn the VPN traffic (because it will be receiving traffic from a VPN tunnel and re-sending it again through another tunnel.

Can you add ''same-security-traffic permit intra-interface'' and try again?

Federico.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Federico Coto Fajardo
VIP Alumni
VIP Alumni

‎11-23-2010 01:37 PM

Hi Keith,

I think that in order to allow a VPN client to reach another VPN client, the ASA should u-turn the VPN traffic (because it will be receiving traffic from a VPN tunnel and re-sending it again through another tunnel.

Can you add ''same-security-traffic permit intra-interface'' and try again?

Federico.

0 Helpful

Go to solution
keithannette
Level 1
Level 1
In response to Federico Coto Fajardo

‎11-24-2010 03:47 AM

Federico,

That worked perfectly. Many thanks for you help

Keith

0 Helpful
Customers Also Viewed These Support Documents