I have an ASA 5510 and use the Cisco VPN Client. We have an office that has 2 users that VPN to our main office. This has worked fine for years and now for some reason only one of them can VPN to us at one time. I tested this at home and found the same thing. seems as though it thinks both computers are the same and gives it the same ip address and then bumps the first one connected off. any suggestions. I used the ASDM software to configure.
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
VPN - only 1 user from external office can connect at a time
- Thread starter symhelp
- Start date
- Thread starter
- #3
- Thread starter
- #5
when i ran it, it turned out to be 9 pages so i'm not sure exactly what you needed. this is what i could find regarding vpnusers. does this help at all?
___________________
access-list vpnusers-group_splitTunnelAcl standard permit xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx
access-list vpnusers-group_splitTunnelAcl standard permit host xxx.xxx.xxx.xxx
access-list vpnusers-group_splitTunnelAcl standard permit xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx
access-list vpnusers extended permit ip xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx
-----------------
ip local pool vpnusers 10.254.100.1-10.254.100.254 mask xxx.xxx.xxx.xxx
--------------
service-policy global_policy global
service-policy csc_out interface inside
group-policy GroupPolicy1 internal
group-policy vpnusers-group internal
group-policy vpnusers-group attributes
wins-server value xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx
dns-server value xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx
split-tunnel-policy tunnelspecified
split-tunnel-network-list value vpnusers-group_splitTunnelAcl
default-domain value pittsburghsymphony.org
tunnel-group vpnusers-group type remote-access
tunnel-group vpnusers-group general-attributes
address-pool vpnusers
authentication-server-group PSO
default-group-policy vpnusers-group
tunnel-group vpnusers-group ipsec-attributes
pre-shared-key *
tunnel-group xxx.xxx.xxx.xxx type ipsec-l2l
tunnel-group xxx.xxx.xxx.xxx ipsec-attributes
pre-shared-key *
prompt hostname context
___________________
access-list vpnusers-group_splitTunnelAcl standard permit xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx
access-list vpnusers-group_splitTunnelAcl standard permit host xxx.xxx.xxx.xxx
access-list vpnusers-group_splitTunnelAcl standard permit xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx
access-list vpnusers extended permit ip xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx
-----------------
ip local pool vpnusers 10.254.100.1-10.254.100.254 mask xxx.xxx.xxx.xxx
--------------
service-policy global_policy global
service-policy csc_out interface inside
group-policy GroupPolicy1 internal
group-policy vpnusers-group internal
group-policy vpnusers-group attributes
wins-server value xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx
dns-server value xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx
split-tunnel-policy tunnelspecified
split-tunnel-network-list value vpnusers-group_splitTunnelAcl
default-domain value pittsburghsymphony.org
tunnel-group vpnusers-group type remote-access
tunnel-group vpnusers-group general-attributes
address-pool vpnusers
authentication-server-group PSO
default-group-policy vpnusers-group
tunnel-group vpnusers-group ipsec-attributes
pre-shared-key *
tunnel-group xxx.xxx.xxx.xxx type ipsec-l2l
tunnel-group xxx.xxx.xxx.xxx ipsec-attributes
pre-shared-key *
prompt hostname context
- Thread starter
- #7
- Status
Similar threads
- Locked
- Question
- Locked
- Question
- Locked
- Question