Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1635
Views
0
Helpful
1
Replies

Cisco AnyConnect Same Subnet

mes
Level 1
Level 1

‎03-02-2011 01:06 PM - edited ‎02-21-2020 05:12 PM

Hi

We wan't to use our ASA 5510 for remote VPN access using Cisco anyconnect.

Our network looks like this:

network.png

As you can see the company network is using 192.168.1.0/24, which is also commonly used by home routers.

My question is:

Given that a user's home network is also 192.168.1.0/24, is it possible to configure the ASA to allow Cisco anyconnect client connect to the company network and access the 3 shown servers, even though both the company network and the home network is using the same subnet?

I was thinking that it might be possible if the VPN IP Pool was using a total seperat pool of addresses like 172.20.1.0/24 but I'm not 100% sure.

Labels:
0 Helpful
1 Reply 1

Yudong Wu
Level 7
Level 7

‎03-02-2011 03:00 PM

Yes, IP pool should be in a separate network.

I think you must use split-tunnel for those server IPs so that a related route entry will be added in client PC's routing table which point to the tunnel. Otherwise, client PC will use the existing local network entry in the routing table and thinks the server is local connected.

0 Helpful
Customers Also Viewed These Support Documents