Safari books is a great resource for low cost e-learning. The first thing I checked out was a Cisco Press ASA book. Since then, I opened up my safari books account back up for $9.99 a month which includes 5 book slots a month. This rule makes sure that the internal traffic from the new network going to the VPN network would not get nat’d on its way out. In the ASDM gui, its called a nat exempt statement. Nat(vlan1) 0 access-list vlan1_nat0_outbound He hinted that I might have needed a “no nat statement”. I then pinged Network guru Shane to see if he could point me in the right direction. I searched cisco for a solution and found a few vague possible solutions. An attempt to connect to a mapped host using its actual address was rejected. I then looked at the log files in the ASDM gui and was receiving the following message when trying to rdp into a server after connecting to the VPN:Īsymmetric NAT rules matched for forward and reverse denied due to NAT reverse path failure. The ASA management interface was able to communicate with devices on both networks, so something else was missing. I then consoled into the ASA and looked at the routing table. I was a little stumped because it seemed that I needed a little more than just a firewall rule to allow both networks to communicate. I checked the firewall rules and access looked to be permitted between the vpn network and the new network. I first logged onto the ASA using the ASDM gui. I’m used to working with checkpoint firewalls, but most firewalls function in a similar fashion. An additional network and VLAN had been added on the ASA 5505 and we needed anyconnect VPN users to be able to access devices on that new network. I was recently asked by a friend to help out with a config for a cisco ASA 5505.
0 kommentar(er)
