ASA 5505 Client Access VPN
When using ASA 5505, there appears to be a bug on the ASDM 5.2 in that when you enable NAT traversal for client access VPNs. It doesn’t actually get added to the config, you have to add it into the command line with the config below.
I believe this only affects 5505 and not 5510′s.
Symptoms of this are users behind a firewall will be able to connect to the VPN but will not be able to hit
anything on the VPN network. For instance, if I am at home behind my firewall I can VPN into Halski’s VPN but I cannot ping
10.17.69.1. However if I am simply behind a Linksys then it would work fine.
anything on the VPN network. For instance, if I am at home behind my firewall I can VPN into Halski’s VPN but I cannot ping
10.17.69.1. However if I am simply behind a Linksys then it would work fine.
crypto isakmp nat-traversal 20
**Note** the 20 portion may or may not apply it depends on the rest of the configuration.
For example if the configuration looks like this
crypto dynamic-map outside_dyn_map 20 set transform-set ESP-3DES-MD5
then the above crypto isakmp command would apply.
posted 09.30.2009
hi there, i just came across your blog listed on google, and i must comment that you compose awesomely well on your blog. i am really struck by the mode that you write, and the content is outstanding. anyways, i would also love to know whether you would like to exchange links with my web portal? i will be certainly more than willing to reciprocate and insert your link off in the blogroll. anticipating for your response, i would like to convey my appreciation and gooday!
Howdy there,just identified your web-site when i google something and wonder what webhosting do you use for your blog,the speed is more faster than my wordpress, i really want to know it.will back to check it out,many thanks!
hi there, i just discovered your blog on bing, and i would like to say that you write awesomely well on your site. i am really struck by the mode that you write, and the subject is good. in any event, i would also like to acknowledge whether you would like to exchange links with my web portal? i will be more than willing to reciprocate and insert your link off in the link exchange area. anticipating for your response, thanks and enjoy your day!
Wow i suggest Switchvpn.com is the most Awesome VPN i have Ever Used. Coz of mainly 1 reason i saved $30 on 1 year Plan and they are very very very Cheap
Like $7 a Month. Unlike StrongVPN it sucks the speed is like 400kbps while downloadin stuff on my 5mbps Line, But Since i Switched to Switchvpn i am gettin like 600kbps i thought i’d share my Results
Great post!
CiscoRefurb – my cousin suggested this blog to me. I love how much detail went into the answer to the problem I was having. You’re wonderful! Thanks for posting! Shane