Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
439
Views
0
Helpful
1
Replies

How can I make VPN Clients visible via icmp from the inside interface

rvopel
Level 1
Level 1

‎11-24-2009 06:50 AM

We want to reach all VPN Clients via the inside interface of the ASA  with icmp from the inside LAN.

We are using DAP with ACL's to reach targets on the inside LAN from the VPN Clients.

Problem:

We only can reach the VPN Clients from hosts which have been opened via  DAP ACL.

We created ACL to allow icmp on the inside interface any any

We get this errror message.

6 Nov 24 2009 06:39:33 109025 136.230.230.93 512 172.17.35.10 0 Authorization denied (acl=DAP-ip-user-206AB50D) for user '<unknown>' from 136.230.230.93/512 to 172.17.35.10/0 on interface inside using ICMP

Can anyone help?

Thanks

Labels:
0 Helpful
1 Reply 1

Ivan Martinon
Level 7
Level 7

‎12-02-2009 11:47 AM

It seems to me that your DAP is too specific, you might need to broad your scope to include those hosts that are not being able to ping those clients.

0 Helpful
Customers Also Viewed These Support Documents