11-12-2018 05:58 AM - edited 03-12-2019 05:31 AM
Hi all,
I am having an issue setting up S2S VPN on our new ASA 5506 model. When I try to add the vpn via the wizard, I get an error if I choose "inside" on the NAT exempt page. The error is below.
VPN and AnyConnect
However, if I choose for example "inside1" or "inside2", the wizard will complete but I can only vpn to that interface.
Our service providers set up the firewall initially and I have noticed that our other two firewalls that use S2S vpn without issue (both ASA 5505's) are set up in the interface area as a VLAN. This ASA 5506 has been set up as a Bridge Group. So on the 5505 we just have an inside and an outside. This 5506 has an inside, an outside, and then inside1, inside2, inside3, etc.
I'm not sure how to resolve this. Do I need to re-setup the firewall from scratch using the VLAN option (I can't see a way to change from bridge group to VLAN so not sure if this is even possible on this model). Or is there some other way to get the S2S working so that I can connect to all insideX interfaces?
Thanks in advance for any guidance that you can provide!
Solved! Go to Solution.
11-12-2018 01:51 PM
11-12-2018 01:51 PM
11-12-2018 10:03 PM
Thank you very much. The answer was so simple! Thanks again for your help!
Much appreciated.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: