Outside VPN traffic not able to ping site-to-site VPN remote site

Posted by Siriss on Server Fault See other posts from Server Fault or by Siriss
Published on 2012-07-10T19:07:56Z Indexed on 2012/07/10 21:18 UTC
Read the original article Hit count: 508

we have two ASA 5510s running 8.4 in a site-to-site VPN setup. All internal traffic is working smoothly.

Site/Subnet A: 192.100.0.0 - local Site/Subnet B: 192.200.0.0 - remote VPN Users: 192.100.40.0 - assigned by ASA

When you VPN into the network, all traffic hits Site A, and everything on subnet A is accessible.

Site B however, is completely inaccessible for VPN users. All machines on subnet B, the firewall itself, etc... is not reachable by ping or otherwise.

I know I am missing a NAT rule, and in 8.2, it was easy as pie to setup using ASDM, but now I can't get it for the life of me as 8.4 apparently made a lot of changes to NAT rules.

I am not too comfortable in the ASA command line, but if there is a command I need to add or if you could direct me where I can add this in 8.4 ASDM I would really appreciate it.

I have tired NAT Exempt, Static NAT, Static NAT Policies, etc... I think I tried all the options. I also might have my interfaces confused with the new look at feel of ASDM.

Thank you much in advance and I hope I have been thorough enough.

© Server Fault or respective owner

Related posts about vpn

Related posts about cisco-asa