Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Access-List PDM Error

Status
Not open for further replies.
mknoxwfc

mknoxwfc

IS-IT--Management
Mar 11, 2002
10
US
I'm getting an error from the PDM upon load.

"PDM does not support multiple uses of a given access control list"

This is the ACL config

access-list 101 permit ip host 12.17.125.12 host 194.117.106.129 (for a VPN to VPN Connection)

access-list 101 permit ip any 10.201.1.0 255.255.255.0 (For outside VPN users to access inside IP's)

nat (inside) 0 access-list 101

What do I need to change to get this right.

Thanks

Michael

 
Sort by date Sort by votes
HI.

You have not posted here the whole relevant config, but I understand that the 101 ACL is bound in 2 places - the NAT 0 and *ALSO* bound to the inside interface, like

nat (inside) 0 access-list 101
...
access-group 101 in interface inside

To solve this, you can create a duplicated access-list and bound one ACL to "nat 0" and the other to the interface.

Bye
Yizhar Hurwitz
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Shmid
  • Locked
  • Question
Restricting Sonicwall SSL-VPN users for WAN access
Replies
7
Views
730
Shmid
Shmid
gbayi_omo
  • Locked
  • Question
Cisco ASA 5505 not allowing access to highest security zone
Replies
0
Views
122
gbayi_omo
gbayi_omo
pbxnkey
  • Locked
  • Question
Cisco ASA VPN using Windows Client-Error 691
Replies
1
Views
162
pbxnkey
pbxnkey
kythri
  • Locked
  • Question
Restrict access to SSL VPN by IP (ASA 5540 - 8.4(7))
Replies
0
Views
135
kythri
kythri
ttrsux
  • Locked
  • Question
Error opening IKE port 4500 on Interface outside
Replies
0
Views
250
ttrsux
ttrsux

Part and Inventory Search

Sponsor

Back
Top