VPN traffic pass through ASA 5510

ctusa2003am · ‎05-09-2016

Hi,

Getting some problem connecting through ASA 5510 from the outside to a Windows 2012 R2 VPN server.

Here is some relevant info:

1. Internal LAN 192.168.1.0 (directly connected to E0/1 interface called 'inside' on ASA - security 100)

2. VPN LAN 192.168.25.0 (directly connected to e0/0 interface called VPN01 on ASAS - security 100)

3. Put 2 NICs in Windows server (VPN). 1 card (internal) in 192.168.1.0 network. 2nd NIC 192.168.25.0.

4. Set up NAT with one public IP to VPN server (192.168.25.0 network).

I am using ASDM and have attached screen shots of some screens.

I created the VPN server but when try connecting from outside it seems that it can't reach the internal server.

What else do I need?

Hope someone can help.

Have attached a few screen shots of ASA.

Thanks

ctusa2003am · ‎05-09-2016

One quick update. The name of the outside interface (E0/2) is P2P_Out.

Thanks,

Aditya Ganjoo · ‎05-09-2016

Hi,

Can you share the result of packet-tracer ?

packet-tracer input P2P_Out icmp 4.2.2.2 8 0 69.24.45.142 det

Regards,

Aditya

ctusa2003am · ‎05-09-2016

Hi Aditya,

Thanks for taking this up. Actually I changed this around i.e. instead of using different network for external NIC (of the server), I put that NIC on the same internal network (i.e. 192.168.1.0) and then did the NAT to that and now it is working.

Thanks,

Ashok