09-06-2018 03:50 AM
Our current setup has an ASA 5520 9.1 (7) 13
We use AnyConnect for our remote VPN clients. (Clients have the Any connect client pre –installed on their laptops.)
It uses IPsec v2 and an internal address pool for IP assignment.
Whilst maintaining our current setup can we add another remote connection that is identical to the first one except that it picks up its addresses from our internal Windows DHCP server?
If so how do we do this please?
09-06-2018 04:53 AM
09-06-2018 05:05 AM
we have one connection profile set up using an internal address pool x.x.99.0
Can we have another connection profile on the ASA that uses our internal DHCP server x.x.77.0
at the same time?
09-06-2018 06:20 AM
09-07-2018 01:42 AM
Appreciate your reply,
I had set up the new tunnel group which referenced the DHCP servers (although I did this via ASDM...Does this matter?)
I created a new AnyConnect client profile via the ASDM and exported this to my test laptop.
I removed the original AnyConnectprofile.xml from the test laptop and replaced it with the profile I created on the ASA via ASDM.
When I try to connect now it still connects via the original tunnel group...?
And it downloads the original AnyConnectprofile.xml and replaces the one I have just copied in.
Q. What am I missing?
Q. What links the profile on my test laptop to the new tunnel group?
Thanks in advance
Martin
09-07-2018 01:54 AM
09-07-2018 02:03 AM
Hi,
I need to keep the original client profile as it is currently being used.
I created a new profile which was identical except for the hostname.
Which part of the client profile is the bit that references the new tunnel group?
I can't see anything in my original profile which references my original tunnel group?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide