09-01-2008 12:53 AM - edited 02-21-2020 03:55 PM
Hello,
We have a ASA5520 which vpn clients connect to. They are able to ping but nothing else seems to get thru. Only when i add a static route entry on the server they are trying to connect to which points to the vpn pool address range they are able to connect. What can be causing this??
thanks,
Arp Hiemstra
09-01-2008 02:19 AM
have configured the NAT exmption also known as NAT 0 ?
for example ur server is 192.168.1.1 and vpn pool is 10.1.1.0
access-list 100 permit host 192.168.1.1 10.1.1.0 255.255.255.0
nat (inside) 0 access-list 100
if helpful Rate
09-01-2008 04:25 AM
From what is explained, i cant explain why it ping without the route. Your servers should have a route for the range allocated to the vpn client pool, classically the default route. If your default GW is not the ASA, then the router should have a route pointint to the ASA.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide