04-09-2008 12:25 PM
Hi,
We are trying to setup a remote vpn to allow clients in to our private lan then be able to use https outbound. Not split tunnel, as the client need to look like they are coming from our domain. Any help would be greatly appreciated. We can connect to the vpn with the client, and we can ping the inside network, but have issues trying to use https outbound via client. Please find my current config attached. Thanks in advance.
Solved! Go to Solution.
04-09-2008 12:30 PM
same-security-traffic permit intra-interface
nat (outside) 101 172.21.200.0 netmask 255.255.255.240
I would also add...
crypto isakmp nat-traversal
04-09-2008 12:30 PM
same-security-traffic permit intra-interface
nat (outside) 101 172.21.200.0 netmask 255.255.255.240
I would also add...
crypto isakmp nat-traversal
04-09-2008 12:48 PM
Hi and thanks. I added those lines and created an access rule to allow 172 access to our DNS. I can use nslookup, but still cannot get out via IE.
04-09-2008 09:55 PM
Hi Elsie,
Also add the following then post your final config
group-policy test attributes
split-tunnel-policy tunnelall
Regards
04-10-2008 06:56 AM
Thanks for your reply.
We did not want to do 'split-tunnel, however the commands that ACOMISKEY suggested worked.
Thanks
04-10-2008 06:46 AM
Thanks!!!
We tried your suggestions and it worked!!!
Thanks Again
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide