Please confirm acl's on the asa inside or other interface facing the resources.
Please confirm nat is not occurring for your pool address.
Please confirm internal network knows how to get back to the ASA pool address your leasing.
Please post the results of
Show run nat
Show access-list
Show run access-group
From any internal routers
Post the result of "show ip route <pool ip>
Thanks,
Joe
-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of CCIE
Sent: Sunday, August 30, 2009 6:17 AM
To: ccielab_at_groupstudy.com
Subject: EzVPN working in just single way
Hi experts,
I have setup and EzVPN between ASA and VPN client software, the VPN client
can connect and establish a VPN session with the VPN server, the devices
behind the VPN server can ping and access any resources on my PC, but I
still can't access any resource from the server side, even once I run show
crypto ipsec sa it shows me that the server side is getting that traffic and
decrypt it.
Regards,
Amin
Blogs and organic groups at http://www.ccie.net
Received on Sun Aug 30 2009 - 06:25:33 ART
This archive was generated by hypermail 2.2.0 : Tue Sep 01 2009 - 05:43:57 ART