Support and News Forum


https://www.eve-ng.net/forum/

IPsec VPN client on ASA/ASAv (eve-ng)

https://www.eve-ng.net/forum/viewtopic.php?f=3&t=292

Page 1 of 1

IPsec VPN client on ASA/ASAv (eve-ng)

Posted: Fri Mar 31, 2017 10:41 am
by casper34
Hi all,
Anyone here labbing successful with IPsec VPN Client on asa/asav in EVE-NG?
I configured VPN successful but I unable access INSIDE/DMS Servers from Remote VPN. But with the same configure, on real physical ASA 5512, I can access INSIDE/DMZ resource from remote VPN.
Thanks,

Re: IPsec VPN client on ASA/ASAv (eve-ng)

Posted: Fri Mar 31, 2017 12:20 pm
by ecze
Please post your topology...( screenshot )
E.

Re: IPsec VPN client on ASA/ASAv (eve-ng)

Posted: Fri Mar 31, 2017 3:25 pm
by casper34
Thanks E,
This is my Topology:
Topology.PNG
This is VPN Connection Info:
VPN-connect.PNG
And this is access to DMZ SERVER result:
access-dmz-server.PNG
Please help me troubleshoot, see link below for configure detail:

https://justpaste.it/151r5

Regards,

Re: IPsec VPN client on ASA/ASAv (eve-ng)

Posted: Fri Mar 31, 2017 4:16 pm
by ecze
Like always,

First check connectivity ( is ASAV Public interface reachable by the VPN client Host ? )
If yes -> Check SA Policies
If Not -> Check Routing in the path from VPN Client to ASA
Check Esxi vswitch used for interface used by EVE ( promiscious enabled )

E.

Re: IPsec VPN client on ASA/ASAv (eve-ng)

Posted: Fri Mar 31, 2017 4:29 pm
by Uldis (UD)
This scenario I did may times, confirming IT is working, Any ASA ported or ASAv
All works
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/