Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1012
Views
15
Helpful
5
Replies

Cannot add an IPv6 pool in a VPN group-policy in FMC

Go to solution
Chess Norris
Level 4
Level 4

‎06-17-2021 02:16 AM - edited ‎06-17-2021 02:21 AM

Hi,

I was following this example on how to use split-tunneling for IPv6 - https://packetpushers.net/cisco-anyconnect-ipv6/

The problem is that there's no option to add an IPv6 pools in a group-policy in FMC - only IPv4 pools. Is this a bug or can it be added using flex-config? I am using FMC and FTD 6.6.4

Thanks

/Chess

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Josue Brenes
Cisco Employee
Cisco Employee

‎06-17-2021 03:52 PM

Hi Chess,

The only options for now is to assign the IPv6 pool on the tunnel-group/connection-profile instead.

Assigning it to the group-policy is not possible yet.

 

Rate if it helps.

 

Regards,

Josue Brenes

TAC - VPN Engineer.

 

View solution in original post

5 Replies 5

Go to solution
Josue Brenes
Cisco Employee
Cisco Employee

‎06-17-2021 03:52 PM

Hi Chess,

The only options for now is to assign the IPv6 pool on the tunnel-group/connection-profile instead.

Assigning it to the group-policy is not possible yet.

 

Rate if it helps.

 

Regards,

Josue Brenes

TAC - VPN Engineer.

 

Go to solution
Chess_N
Level 1
Level 1
In response to Josue Brenes

‎06-18-2021 01:15 AM - edited ‎06-18-2021 01:21 AM

Hi Josue,

Is it possible to mix and assign IPv4 addresses from the group-policy and IPv6 on the tunnel-group at the same time?

Best regards

/Jugge

0 Helpful

Go to solution
Milos_Jovanovic
VIP Alumni
VIP Alumni
In response to Chess_N

‎09-15-2021 12:21 AM

Hi @Chess_N,

Yes, it is possible to mix attributes from different sources. There is a list of priorities, if assigning same attribute from multiple sources, e.g. if you want to assign IP address to a user, and you define it under tunnel-group and group-policy, group-policy would have priority. But, if you assign it under group-policy and DAP, DAP would take precedence.

You can find this information under VPN config guide.

BR,

Milos

Go to solution
rhugento@cisco.com
Cisco Employee
Cisco Employee
In response to Josue Brenes

‎07-23-2024 03:48 PM

Hi Josue, I have a customer requirement to have different IPv6 pools for two user groups for remote access VPN as described above. Therefore, I need as well IPv6 pools in the group-policy in FMC.

Can you please let me know if the below is still the case?

"The only options for now is to assign the IPv6 pool on the tunnel-group/connection-profile instead. Assigning it to the group-policy is not possible yet."

Is it a roadmap item or are there any workarounds possible? Many thanks!

0 Helpful

Go to solution
rhugento@cisco.com
Cisco Employee
Cisco Employee

‎07-23-2024 09:10 AM

Hi Team, I have a customer requirement to have different IPv6 pools for two user groups for remote access VPN as described above. Therefore, I need as well IPv6 pools in the group-policy in FMC.

Can you please let me know if the below is still the case?

"The only options for now is to assign the IPv6 pool on the tunnel-group/connection-profile instead. Assigning it to the group-policy is not possible yet."

Is it a roadmap item or are there any workarounds possible? Many thanks!

0 Helpful
Customers Also Viewed These Support Documents