Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
197
Views
0
Helpful
1
Replies

vpn setup issue

1snelson
Level 4
Level 4

‎12-08-2014 01:07 PM

has anyone setup a site to site vpn tunnel with Anyconnect access to one of the sites using 8.4 code?

i have done it several times with 8.2 code but am missing something with 8.4.

I get connected with the client, but cannot access internal resources.

any ideas or sample config would be appreciated.

 

thanks, Stuart

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎12-08-2014 07:33 PM

For remote access VPN clients to access resources across a site-site VPN tunnel we typically need a nat (outside,outside) statement telling the ASA to not NAT (leave alone) the VPN pool when traffic is destined to or coming from the remote site. You need to also make sure the VPN pool to remote site addresses are included in the access-list referenced by the crypto map at each end.

Those bits are the important ones specific to this use case.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents