Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

VPN ASA Trusted to Untrusted errors

Status
Not open for further replies.

tjbradford

Technical User
Dec 14, 2007
229
GB
I have configured an ASA to allow users to vpn to our Offices, it works great and there able to access everything they require, however i have found that i'm unable to connect to there machines to support there systems, ie if i try to vnc it terminates my connection almost instantly , if i try to telnet it gives the error " Error: Must authenticate before using this service." if i try to "\\pc\c$" it says the system nolonger exists and if i run hfs.exe (mini http server) and try to browse the site it say "Error: Must authenticate before using this service." which i know doesn't require auth

in the log files it shows the following "Auth start for user `???` from (source ip)/58642 to (dest ip)/80"
if i try to start the http browser.

if i try to vnc i get the following user from (source ip) to (dest ip) /5900 on interface inside using tcp muct authenticate before using this service.

does anyone have any idea's ?
 
Sounds like cut-through proxy is possibly configured?

Can you post your config please.
 
sust this one now thanks , it was a rule in the firewall policy asking for authentication from inside to outside , removed this rule and replaced with accounting and it works like a charm.

really had me scratching my head though.

 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top