10-10-2015 12:27 PM
Hi,
I have configured a group policy on ASA having the tunnelall option under the split-tunnel-policy. I have also configured the vpn pool to be natted and I used the command same-security-traffic permit intra-interface in order for the traffic coming from the vpn pool to be natted and then leaving the outside interface of my ASA device. Everything works fine when I use my Ubuntu machine on which I have installed a vpnc client. As I can see the public IP with which I access the Internet is the IP of my ASA's outside interface which is what I want.
The problem arises when I use my windows 10 machine and Cisco's VPN client. Although the connection with the ASA is always successfully established and I can access the internal network (my home network behind ASA device) I cannot access the Internet. I think that the problem is related to windows 10 since as I mentioned above everything works fine when I log into my Ubuntu machine. Does anyone have any idea what could the source of the problem be? Note that the version of my ASA device is 8.2. Moreover I have to highlight that I do not want to use split -tunneling to solve it.
Thanks
George
10-13-2015 03:42 PM
Hi George,
If you're using the cisco VPN client , be advise this software is currently End of life and only supported for Windows XP and Windows 7. You might need to migrate to Anyconnect, if you are already using anyconnect make sure there is no 3rd party software installed on the VPN network adapter.
http://www.cisco.com/c/en/us/products/collateral/security/vpn-client/end_of_life_c51-680819.html
Hope it helps
-Randy-
11-02-2015 11:17 AM
Finally I solved this issue. The problem was that I was missing the command that assigns DNS servers to the remote clients. The command is configured under the relevant group-policy and its syntax is as below:
dns-server value 8.8.8.8
PS: Thanks Randy for your suggestion.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide