[c-nsp] pix vs asa
Ryan West
rwest at zyedge.com
Thu Aug 5 22:52:17 EDT 2010
> -----Original Message-----
> From: Deric Kwok [mailto:deric.kwok2000 at gmail.com]
> Sent: Thursday, August 05, 2010 9:44 PM
> Subject: Re: [c-nsp] pix vs asa
>
> Hi
>
> Thank you so much for reply.
> AS A works fine but I have problem about vpn. I am using ciscoasdm to
> configure it.
>
> I get ipaddress in ippool after connection.
>
> But I can not ping out eg: gw and any servers in the same pool network
>
> Any example about vpn config too to let me check
>
> Thank you again
>
Sounds like you haven't configured your NAT exempt rules.
access-list inside-nonat permit ip any <ip local pool> <subnet>
nat (inside) 0 access-list inside-nonat
-ryan
More information about the cisco-nsp
mailing list