购买或续订
购买或续订
取消
开启建议
自动建议可通过在您键入时建议可能的匹配,而快速缩小您的搜索结果范围。
显示结果 
搜索替代 
您的意思是: 
cancel
开始对话
5958
查看次数
0
有帮助
3
回复

ASA Version 8.4 ,客户端是 anyconnect 4 打不开网页

查看解答
smilefish
Level 1
Level 1

发布时间 ‎08-02-2015 10:07 PM

ASA Version 8.4 ,客户端是 anyconnect 4 , 配置好了,VPN能接入,但是所有client端都打不开网页了,
直接用ip就能访问,说明网络链路没问题。
使用同一个dns服务器,拨VPN前,我的windows7 客户端DNS能正常解释,拨通VPN后,DNS就没法解析了。
拨前ping www.baidu.com可以,拨通后再ping就说找不到主机。
谢谢,高手解答
标签:
0 有帮助
1 个已接受解答

已接受的解答

查看解答
weizh4
Cisco Employee
Cisco Employee

发布时间 ‎08-02-2015 10:07 PM

请参考此配置案例:
ip local pool sales_addresses 209.165.202.129-209.165.202.158
aaa-server sales_server protocol radius
crypto ipsec transform-set sales_l2tp_transform esp-3des esp-sha-hmac
crypto ipsec transform-set sales_l2tp_transform mode transport
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000
l2tp tunnel hello 100
group-policy sales_policy internal
group-policy sales_policy attributes
wins-server value 209.165.201.3 209.165.201.4
dns-server value 209.165.201.1 209.165.201.2
vpn-tunnel-protocol l2tp-ipsec
tunnel-group sales_tunnel type remote-access
tunnel-group sales_tunnel general-attributes
address-pool sales_addresses
authentication-server-group none
accounting-server-group sales_server
default-group-policy sales_policy
tunnel-group sales_tunnel ppp-attributes
authentication pap

在原帖中查看解决方案

0 有帮助
3 条回复3

查看解答
weizh4
Cisco Employee
Cisco Employee

发布时间 ‎08-02-2015 10:07 PM

请参考此配置案例:
ip local pool sales_addresses 209.165.202.129-209.165.202.158
aaa-server sales_server protocol radius
crypto ipsec transform-set sales_l2tp_transform esp-3des esp-sha-hmac
crypto ipsec transform-set sales_l2tp_transform mode transport
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000
l2tp tunnel hello 100
group-policy sales_policy internal
group-policy sales_policy attributes
wins-server value 209.165.201.3 209.165.201.4
dns-server value 209.165.201.1 209.165.201.2
vpn-tunnel-protocol l2tp-ipsec
tunnel-group sales_tunnel type remote-access
tunnel-group sales_tunnel general-attributes
address-pool sales_addresses
authentication-server-group none
accounting-server-group sales_server
default-group-policy sales_policy
tunnel-group sales_tunnel ppp-attributes
authentication pap
0 有帮助

查看解答
Xin Lei
Spotlight
Spotlight

发布时间 ‎08-14-2015 06:30 AM

试下debug吧~~这样可以看到一些信息:lol
0 有帮助

查看解答
pebao
Cisco Employee
Cisco Employee

发布时间 ‎10-16-2015 01:37 AM

你忘给客户分配DNS了吧。
0 有帮助
快捷链接

浏览社区快速链接并以您的母语获取个性化内容:

发布或浏览文章 分享想法或新闻 观看我们的所有视频视频
Customers Also Viewed These Support Documents