Re: [fw-wiz] ASA 5510 problem


Are you able to access anything when you establish the VPN tunnel? How are you trying to access? (ping, email client?) Also, when you connect, is your connecting workstation directly connected to a public network, or are you behind a device performing NAT (like a home firewall)?

Can you post snippets of the configuration? (group-policy block, and any line beginning with the word crypto).


Christopher J. Wargaski
RMS Technology Solutions, Inc.
(847) 215-1661 x223

-----Original Message-----
From: firewall-wizards-bounces@xxxxxxxxxxxxxxxxxxxxx on behalf of Dehnert James Sr
Sent: Mon 4/30/2007 7:04 PM
To: firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
Subject: [fw-wiz] ASA 5510 problem

I have a Cisco ASA 5510 with an External, Internal, and DMZ
interfaces. I have a mail server in the DMZ and I have configured
the ASA so that I can get to it internally an externally, however,
when I log in using the IPSEC VPN I cannot connect.

The internal address range is
The dmz address range is
The VPM pool range is

I have mappings internally to so that any 192.168.100 host can
connect to the mail server at, but the VPN access
issue has me flummoxed.

Cisco has examples of VPN or DMZ, bit nothing with info on both.

Any pointers would be greatly appreciated.


James "Zeke" Dehnert
Phone: +1 707.546.6620 x602 Fax: +1 707.324.8043
"Life is racing, everything else is just waiting"

firewall-wizards mailing list


firewall-wizards mailing list