Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1264
Views
5
Helpful
2
Replies

VPN Client and ASA 5512-X

Go to solution
david-lima
Level 4
Level 4

‎05-10-2013 04:54 PM

Hi all, I have a CIsco ASA 5512-X (8.6(1)2). I configured VPN Client access for some users, the can access to the internal network resources without problems, but two client VPN cannot reach each other.

I have configured the the static NAT  without possitive results.

same-security-traffic permit inter-interface

same-security-traffic permit intra-interface

object network network-local

subnet 10.0.30.0 255.255.255.0

object network VPN-Client

subnet 192.168.254.0 255.255.255.0

nat (inside,outside) source static any any destination static VPN-Client VPN-Client

I guess I'm missing something in the ASA config.

I'd appreciate your comments.

Thanks a lot.

David

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Varinder Singh
Cisco Employee
Cisco Employee

‎05-10-2013 05:09 PM

David,

Are you using split tunnel?

Incase you are make sure that you have vpn pool subnet 192.168.254.0 255.255.255.0 part of split tunnel.

same-security-traffic permit intra-interface is all required to make the U turning work.

Regards,

Varinder



P.S. Please mark this post as 'Answered' if you find the above information helpful so that it brings goodness to other community users

Regards, Varinder P.S. Please mark this post as 'Answered' if you find the above information helpful so that it brings goodness to other community users

View solution in original post

2 Replies 2

Go to solution
Varinder Singh
Cisco Employee
Cisco Employee

‎05-10-2013 05:09 PM

David,

Are you using split tunnel?

Incase you are make sure that you have vpn pool subnet 192.168.254.0 255.255.255.0 part of split tunnel.

same-security-traffic permit intra-interface is all required to make the U turning work.

Regards,

Varinder



P.S. Please mark this post as 'Answered' if you find the above information helpful so that it brings goodness to other community users

Regards, Varinder P.S. Please mark this post as 'Answered' if you find the above information helpful so that it brings goodness to other community users

Go to solution
david-lima
Level 4
Level 4
In response to Varinder Singh

‎05-10-2013 05:37 PM

Thanks a lot Varinder.

The split tunnel was the problem.

Thanks again

David

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents