×
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!
  • Students Click Here

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

Jobs

One VPN user cannot browse the Encrypted Network

One VPN user cannot browse the Encrypted Network

One VPN user cannot browse the Encrypted Network

(OP)
I have a Cisco ASA 5510 for VPN connectivity. At any given time there are 2-4 users connected, although there are over a hundred accounts set up. I have one new user who is external to the company who can connect to the VPN, but cannot ping anything or access anything. I have had his Admin check the IPSEC pass through on their firewall, the Windows Firewall, I have opened access-lists just for his IP, but nothing seems to fix this. He is using the same client and default policy as all the other users.  

RE: One VPN user cannot browse the Encrypted Network

Is his local PC's IP address in the same range as the network's range.  He needs to be in a different range.

Hope this helps.

Please help us help you.  Read Tek-Tips posting polices before posting.
Canadian members check out Tek-Tips in Canada for socializing, networking, and anything non-technical.

RE: One VPN user cannot browse the Encrypted Network

(OP)
No his ip is different..

C:\>ipconfig /all

 

Windows IP Configuration

 

        Host Name . . . . . . . . . . . . : ZHP3000K

        Primary Dns Suffix  . . . . . . . : .com

        Node Type . . . . . . . . . . . . : Hybrid

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : No

        DNS Suffix Search List. . . . . . : .org

                                            

 

Ethernet adapter Local Area Connection:

 

        Connection-specific DNS Suffix  . : .local

        Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller

        Physical Address. . . . . . . . . : 40-61-86-90-D7-4B

         Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 200.200.200.86

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . :

         DHCP Server . . . . . . . . . . . : 200.200.200.9

        DNS Servers . . . . . . . . . . . : 200.200.200.9

                                            200.200.200.5

        Primary WINS Server . . . . . . . : 200.200.200.9

        Lease Obtained. . . . . . . . . . : Tuesday, August 10, 2010 10:03:36 AM

 

        Lease Expires . . . . . . . . . . : Tuesday, August 24, 2010 10:03:36 AM

 

 

Ethernet adapter Local Area Connection 2:

 

        Connection-specific DNS Suffix  . : .org

        Description . . . . . . . . . . . : Cisco Systems VPN Adapter

        Physical Address. . . . . . . . . : 00-05-9A-3C-78-00

        Dhcp Enabled. . . . . . . . . . . : No

        IP Address. . . . . . . . . . . . : 192.168.1.6

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 192.168.1.1

        DNS Servers . . . . . . . . . . . : 128.1.5.1

                                            128.1.0.200

 

RE: One VPN user cannot browse the Encrypted Network

do you have nat-traversal enabled??

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)

RE: One VPN user cannot browse the Encrypted Network

(OP)
Yes I just double checked in the ASDM.

RE: One VPN user cannot browse the Encrypted Network

Can you check if the policy being downloaded (split-tunnel or Full tunnel) on to his PC when connected. Righ click on the vpn client on laptop (once connected) and you can find this from statistics or some other option (Do not have client in front of me at this time ;-).

hth
MS

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close